npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

agent-json-validate

v1.3.0

Published

Validator for the agent.json capability manifest specification

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

fransdevelopmentfransdevelopment

Keywords

agentagent-jsonmanifestvalidatoragent-internetcapabilityx402paymentdiscoveryopen-standardmulti-chain

Readme

agent.json

The open capability manifest for the agent internet.

Spec Version Schema License: MIT npm

agent.json is a machine-readable file that a service publishes to declare what it offers to AI agents — its capabilities, inputs, and payment terms.

Just as robots.txt tells search engines how to crawl a site, agent.json tells AI agents exactly how to interact with your service. It replaces the need for agents to blindly scrape pages or guess API endpoints.

Table of Contents

Why does this exist?

The web is evolving from only an internet of human users to a three-party internet where AI agents can act on behalf of human users. Currently, agents struggle to discover what a website can actually do, how to format requests, and who to pay.

This repository establishes a standardized, decentralized, open protocol to solve this:

  • For Service Providers (Websites, SaaS, Apps): Make your service "agent-ready" in 5 minutes. Let agents interact with your product and get paid for it — without building and maintaining a custom agent API.
  • For AI Agent Builders (Runtimes): Stop hardcoding brittle web scrapers or custom tool integrations. Fetch the agent.json and dynamically understand a site's capabilities, inputs, and payment terms instantly.

Quick Start

1. Create your manifest

{
  "version": "1.3",
  "origin": "yoursite.com",
  "payout_address": "0xYOUR_WALLET_ADDRESS",
  "display_name": "Your Service",
  "description": "What your service does.",
  "intents": [
    {
      "name": "search_products",
      "description": "Search your catalog by keyword. Returns product names, prices, and availability.",
      "parameters": {
        "query": { "type": "string", "required": true }
      }
    }
  ],
  "bounty": {
    "type": "cpa",
    "rate": 2.00,
    "currency": "USDC"
  }
}

2. Host it

Serve the file at:

https://yoursite.com/.well-known/agent.json

That's it. Your service is now discoverable by any agent runtime that implements the spec. No single entity controls the registry.

3. Validate it

npx agent-json-validate https://yoursite.com/.well-known/agent.json

Or validate a local file:

npx agent-json-validate ./agent.json

Integration Tiers

The protocol supports progressive integration. Start minimal, add detail as your integration matures.

| Tier | What you publish | What agents can do | Economics | |------|------------------|--------------------|-------------| | 1 — Minimal | version + origin + payout_address | Interact via web automation | Pay bounties for routing | | 2 — Structured | Add intents with descriptions and parameters | Precise capability matching, better routing | Pay bounties + receive runtime incentives | | 2+ — Direct API | Add endpoint and method to intents | Agents call your API directly, no browser needed | Charge users prices + receive runtime incentives | | 3 — Authenticated | Add identity metadata | Runtime-specific trust policies and richer provider identity | All of the above + optional runtime-specific trust flows |

Start at Tier 1. Add detail as your integration matures. Each tier earns more because each tier provides more value to agents and their users.

The Economics

How value flows

The agent.json establishes an economic layer for the agentic web — but it's important to understand how it works.

The manifest is an open standard. The economics are opt-in. Any runtime can read your agent.json and use your declared intents. Whether a provider pays bounties to attract runtimes, or a runtime pays incentives to reward providers, are independent decisions. Nothing in the protocol forces payment.

So why would a runtime (or a provider) pay?

Because the economics are mutually beneficial. Providers who receive incentives from runtimes invest in better structured access — faster APIs, richer data, higher reliability. Runtimes who receive bounties from providers are motivated to route their users to those services, increasing the provider's traffic and revenue. The economic layer isn't a tax — it's an open marketplace where both sides benefit from participation.

The same dynamic drove the web's existing economics. Search engines don't have to share revenue with publishers. Payment gateways don't have to share revenue with platforms. They do because the ecosystem is more valuable when value flows to the participants who create it.

The Economic Layers

1. Bounties (Provider → Runtime)

Think of bounties as affiliate marketing or advertising for the agentic web. You, the provider, want agents to bring you paying users. So you declare a bounty:

"bounty": { "type": "cpa", "rate": 2.00, "currency": "USDC" }

When an agent successfully completes a task at your service — a purchase, a booking — you (the provider) pay the runtime a $2.00 bounty to their payout_address. This acts as an advertisement — a signal to agent runtimes that routing traffic here is economically rewarded.

2. Compute Efficiency Incentives (Runtime → Provider)

Every agent interaction costs compute — AI inference, browser automation, network round-trips. These costs are real and measurable. When a provider publishes a structured agent.json with declared intents, agents can skip the expensive guesswork of navigating a website and go straight to the capability they need.

The difference is significant:

| Integration Level | Typical Cost | Typical Speed | |------------------|-------------|---------------| | No manifest (DOM automation) | 5–15 AI calls, 10–30 seconds | Slowest | | Declared intents (Tier 2) | 2–8 AI calls, 5–15 seconds | Faster | | Direct API endpoints (Tier 2+) | 0–1 AI calls, 1–3 seconds | Fast | | Agent-native endpoints (Tier 3) | 0 AI calls, <1 second | Fastest |

A provider with a structured manifest can reduce agent compute costs by 10–100x compared to blind automation. This creates a natural economic incentive: runtimes that charge users for compute have reason to preferentially route to efficient providers.

A provider can optionally suggest an incentive in their manifest for providing this structured access:

"incentive": { "type": "cpa", "rate": 0.50, "currency": "USDC" }

This is a purely opt-in economic framework:

  1. Suggesting an incentive is optional. A provider does not have to include an incentive field. A runtime might choose to pay a provider an incentive organically simply because their endpoint delivered excellent compute efficiency.
  2. Runtimes can pay more. A runtime isn't limited to the suggested rate. If a runtime's algorithm notices a provider offers exceptional privacy, speed, or accuracy, the runtime might choose to pay a higher incentive to ensure that provider stays well-resourced.
  3. Incentives stack. A runtime might decide to pay an incentive on top of a provider's required price, simply because the runtime wants to reward and encourage high-quality, privacy-oriented providers in the ecosystem.

The framework creates the conditions where efficiency and quality are visible, measurable, and economically rewarded by the open market.

3. Payment Intents / Prices (User → Provider)

Some intents involve the user paying the provider directly — tips, purchases, subscriptions. These are independent of the bounty system and work regardless of whether the runtime participates in bounties. The endpoint field creates a payment flow through any payment rail:

{
  "name": "tip_checkout",
  "description": "Send a tip. Creates a hosted checkout session.",
  "endpoint": "/api/checkout/tip",
  "method": "POST",
  "parameters": {
    "amount": { "type": "number", "required": true, "description": "Tip amount in USD" }
  },
  "returns": {
    "type": "object",
    "properties": {
      "url": { "type": "string", "description": "Checkout URL" }
    }
  }
}

Payment intents are payment-rail agnostic — fiat gateways, crypto commerce processors, direct wallet transfers. The manifest declares what's possible; your backend handles the settlement. See the payment intent example.

4. Paid Access (SaaS / API Pricing)

If your service charges for access — per API call, per unit of usage, or a flat fee — you can declare pricing directly on any intent using the price field:

{
  "name": "analyze_document",
  "description": "AI-powered document analysis. Extracts key clauses and generates a summary.",
  "endpoint": "/api/v1/analyze",
  "method": "POST",
  "parameters": {
    "document_url": { "type": "string", "required": true }
  },
  "price": {
    "amount": 0.50,
    "currency": "USDC",
    "model": "per_call",
    "network": ["base", "arbitrum"]
  }
}

This tells any agent runtime upfront: "this intent costs $0.50 per call, payable in USDC on Base or Arbitrum." The runtime can present this cost to the user, factor it into task planning, and obtain approval through its supervision layer before executing.

The network field accepts a single string (e.g., "base") or an array of strings (e.g., ["base", "arbitrum"]), enabling multi-chain providers to advertise all accepted settlement networks. Agents use this for routing — an agent with an Arbitrum wallet can immediately see that this provider accepts Arbitrum, without needing a round-trip request.

How the economic layers interact

| | price | bounty | incentive | |--|---------|----------|-------------| | Direction | User → Provider | Provider → Runtime | Runtime → Provider | | Purpose | Gating access / buying goods | Advertising / routing acquisition | Performance / fulfillment reward | | Required | Yes (provider blocks access without it) | No (provider's choice) | No (runtime's choice to honor) |

An intent can have any combination. A SaaS might charge $0.50 per call (price), offer a $0.10 advertising bonus to runtimes to bring them traffic (bounty), and request no performance bonus (incentive).

Supported pricing models:

  • per_call — fixed cost per invocation (default)
  • per_unit — cost scales with a parameter value (e.g., $0.10 x number of images generated)
  • flat — one-time access fee

Payment Discovery

The payments object enables protocol-agnostic payment discovery — providers can advertise multiple payment rails (x402, L402, Lightning, MPP/Stripe) simultaneously, letting agents choose the best settlement path for their user.

{
  "payments": {
    "x402": {
      "networks": [
        {
          "network": "base",
          "asset": "USDC",
          "contract": "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",
          "facilitator": "https://x402.org/facilitator"
        },
        {
          "network": "arbitrum",
          "asset": "USDC",
          "contract": "0xaf88d065e77c8cC2239327C5EDb3A432268e5831",
          "facilitator": "https://x402.org/facilitator"
        }
      ],
      "recipient": "0xYOUR_ADDRESS"
    },
    "l402": {
      "lightning_address": "[email protected]"
    }
  }
}
  • Each key under payments is a protocol name. Presence = supported.
  • Unknown protocol keys are allowed for future extensibility.
  • Per-protocol recipient overrides the manifest's payout_address.
  • For x402 details (networks, flat fields), see SPECIFICATION.md §4.8-4.9.

Intent-level payments allow per-intent pricing with optional per-network differentiation:

{
  "payments": {
    "x402": {
      "direct_price": 0.50,
      "ticket_price": 0.40,
      "network_pricing": [
        { "network": "ethereum", "direct_price": 0.55, "ticket_price": 0.45 }
      ]
    }
  }
}

The payments field is entirely optional. It does not replace price, does not prevent other payment mechanisms, and does not privilege any single payment rail. See the multi-protocol payments example and SPECIFICATION.md §4.9 for full details.

Validator

CLI

# From URL
npx agent-json-validate https://example.com/.well-known/agent.json

# From file
npx agent-json-validate ./my-manifest.json

# From stdin
cat agent.json | npx agent-json-validate --stdin

# JSON output
npx agent-json-validate ./agent.json --json

Exit code 0 = valid, 1 = invalid.

Programmatic

const { validate } = require("agent-json-validate");

const result = validate({
  version: "1.3",
  origin: "example.com",
  payout_address: "0xYOUR_WALLET_ADDRESS",
  intents: [
    {
      name: "search_products",
      description: "Search the product catalog by keyword.",
    },
  ],
});

console.log(result.valid);    // true
console.log(result.tier);     // 2
console.log(result.errors);   // []
console.log(result.warnings); // []

JSON Schema

Use schema.json with any JSON Schema validator:

import Ajv from "ajv";
import schema from "./schema.json";

const ajv = new Ajv();
const isValid = ajv.validate(schema, manifest);

Examples

| Example | Description | |---------|-------------| | tier1-minimal.json | Minimal three-field manifest | | tier2-ecommerce.json | E-commerce with search, cart, and purchase intents | | tier2-saas.json | SaaS document platform with CRUD intents | | tier2-travel.json | Travel booking with flights, hotels, and reservations | | tier3-authenticated.json | Financial API with DID identity and extensions | | paid-saas-api.json | Paid API with per-call and per-unit pricing | | payment-intent-hosted.json | Hosted checkout and crypto tipping | | x402-micropayments.json | Multi-network x402 micropayments with per-network pricing | | payments-multiprotocol.json | Multi-protocol payment discovery (x402 + L402 + MPP) |

Specification Summary

Required fields: version, origin, payout_address

Optional fields: display_name, description, extensions, identity, intents, bounty, incentive, x402, payments

Intent fields: name, description, extensions, endpoint, method, parameters, returns, price, bounty, incentive, x402, payments

Hosting: https://{domain}/.well-known/agent.json (preferred) or https://{domain}/agent.json (fallback)

Discovery: Agent runtimes fetch the manifest when first interacting with a domain. No registration needed — publishing the file is sufficient.

Resolution orders:

  • Bounty: Intent-level bounty > Manifest-level bounty > No bounty
  • Payments: payments wrapper (v1.3) > legacy top-level x402 (v1.2)
  • x402: Intent-level x402 > Root-level x402 > No x402
  • x402 pricing: network_pricing[network] > intent direct_price/ticket_price > price.amount
  • x402 networks: networks array (if present) > flat fields (network, asset, contract, facilitator)

Extensibility: Vendor-specific metadata should live under an extensions object (e.g., "extensions": { "air": { ... } }). Legacy x- or x_ prefixed fields are also tolerated. Runtimes must gracefully ignore unknown fields to ensure forward compatibility.

See SPECIFICATION.md for the complete reference.

Extensions

The core manifest stays small on purpose. Runtime- or vendor-specific metadata should live under an extensions object, for example:

{
  "extensions": {
    "air": {
      "custom_field": true
    }
  }
}

Runtimes should ignore unknown extension namespaces. Signing and verification behavior are not standardized in the current spec; runtimes that support them should document that behavior in their own extension namespace.

What's in this repo

| File | Description | |------|-------------| | SPECIFICATION.md | The full spec — schema, field reference, discovery protocol, security considerations | | schema.json | JSON Schema (2020-12) for programmatic validation | | validate.js | Zero-dependency CLI validator and Node.js library | | test.js | Test suite — 103 tests covering all schema features | | examples/ | Example manifests for different industries and use cases | | CONTRIBUTING.md | Contribution guidelines |

Goals and Governance

The goal of this repository is to establish a decentralized, open standard for agent capability discovery. The protocol is designed so that:

  • Any service can participate by publishing a file. No registration, no gatekeeper.
  • Any agent runtime can consume it. No single runtime is privileged.
  • Multiple payment rails are supported. No single payment provider is required.
  • The standard evolves through open contribution, not proprietary control.

Contributing

We welcome contributions of all kinds — from typo fixes to new features. See CONTRIBUTING.md for guidelines on how to get involved.

Further Reading

If you want to understand the emerging agent internet more, including the research and philosophies underpinning this protocol, please refer to: https://arcede.com/papers

License

MIT