npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

hono-a2a

v0.1.0

Published

Hono adapter for A2A (Agent-to-Agent) protocol

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

pavegpaveg

Keywords

honoa2aagent-to-agentaiagent

Readme

hono-a2a

npm version License

Hono adapter for the A2A (Agent-to-Agent) protocol.

Serve A2A agents on Cloudflare Workers, Deno, Bun, and Node.js with zero production dependencies.

Status: 0.x — public API may change in minor releases until 1.0. This package targets the A2A protocol version supported by @a2a-js/sdk@^0.3.x. Catch-up to A2A v1.0 (renamed methods, restructured agent card, JWS signatures, multi-tenancy) will land in a future release once @a2a-js/sdk adopts v1.0.

Install

# npm
npm install hono-a2a hono @a2a-js/sdk

# pnpm
pnpm add hono-a2a hono @a2a-js/sdk

Quick Start

import { Hono } from "hono";
import { DefaultRequestHandler, InMemoryTaskStore } from "@a2a-js/sdk/server";
import { a2aApp } from "hono-a2a";

const agentCard = {
  name: "my-agent",
  url: "https://example.com",
  version: "1.0.0",
  capabilities: { streaming: true },
  skills: [{ id: "chat", name: "Chat" }],
};

const requestHandler = new DefaultRequestHandler(
  agentCard,
  new InMemoryTaskStore(),
  myAgentExecutor, // your AgentExecutor implementation
);

const app = new Hono();
app.route("/", a2aApp({ requestHandler }));

export default app;

This serves:

  • POST / — JSON-RPC 2.0 endpoint (message/send, message/stream, tasks/get, tasks/cancel, etc.)
  • GET /.well-known/agent-card.json — Agent card discovery

Individual Handlers

For more control, use the handlers directly:

import { Hono } from "hono";
import { jsonRpcHandler, agentCardHandler, UserBuilder } from "hono-a2a";

const app = new Hono();

app.post(
  "/a2a",
  jsonRpcHandler({
    requestHandler,
    userBuilder: UserBuilder.noAuthentication,
  }),
);

app.get(
  "/.well-known/agent-card.json",
  agentCardHandler({ agentCardProvider: requestHandler }),
);

Note: When using individual handlers instead of a2aApp(), you are responsible for applying body size limits yourself. See Security.

Custom Authentication

The userBuilder receives Hono's Context, giving access to headers and middleware-set variables:

import { Hono } from "hono";
import { jsonRpcHandler } from "hono-a2a";
import type { UserBuilder } from "hono-a2a";

const userBuilder: UserBuilder = async (c) => {
  const token = c.req.header("Authorization")?.replace("Bearer ", "");
  const user = await verifyToken(token);
  return { isAuthenticated: true, userName: user.id };
};

const app = new Hono();
app.post("/a2a", jsonRpcHandler({ requestHandler, userBuilder }));

Mounting as a Sub-App

a2aApp() returns a standard Hono instance, so you can mount it at any path:

const main = new Hono();
main.get("/health", (c) => c.text("ok"));
main.route("/agent", a2aApp({ requestHandler }));
// Agent card: GET /agent/.well-known/agent-card.json
// JSON-RPC:   POST /agent/

API

a2aApp(options)

Returns a Hono sub-app with JSON-RPC and agent card routes.

| Option | Type | Default | Description | |---|---|---|---| | requestHandler | A2ARequestHandler | required | The A2A request handler | | userBuilder | UserBuilder | noAuthentication | Authentication builder | | agentCardPath | string | ".well-known/agent-card.json" | Agent card endpoint path | | agentCardProvider | AgentCardProvider | requestHandler | Agent card data source | | maxBodySize | number | 102400 (100KB) | Max request body size in bytes |

jsonRpcHandler(options)

Hono handler for A2A JSON-RPC 2.0 requests. Supports streaming via Server-Sent Events (SSE).

| Option | Type | Default | Description | |---|---|---|---| | requestHandler | A2ARequestHandler | required | The A2A request handler | | userBuilder | UserBuilder | noAuthentication | Authentication builder |

agentCardHandler(options)

Hono handler that serves the agent card as JSON.

| Option | Type | Description | |---|---|---| | agentCardProvider | AgentCardProvider | Function or object with getAgentCard() |

UserBuilder.noAuthentication

Default user builder that returns an unauthenticated user. Equivalent to the Express adapter's UserBuilder.noAuthentication.

Security

Body Size Limit

a2aApp() applies a 100KB body size limit by default (matching Express's express.json() default). Oversized requests receive a 413 response with a JSON-RPC parse error.

To customize:

a2aApp({
  requestHandler,
  maxBodySize: 1024 * 1024, // 1MB
});

When using jsonRpcHandler() directly, apply bodyLimit yourself:

import { bodyLimit } from "hono/body-limit";

app.post(
  "/a2a",
  bodyLimit({ maxSize: 102400 }),
  jsonRpcHandler({ requestHandler }),
);

Error Handling

Internal error details are never leaked to clients. When non-A2AError exceptions occur, the handler returns a generic error message and logs the original error server-side.

Supported A2A Methods

All methods supported by @a2a-js/sdk's JsonRpcTransportHandler:

| Method | Description | |---|---| | message/send | Send a message to the agent | | message/stream | Send a message with SSE streaming response | | tasks/get | Get task by ID | | tasks/cancel | Cancel a running task | | tasks/resubscribe | Resubscribe to task updates (SSE) | | tasks/pushNotificationConfig/set | Set push notification config | | tasks/pushNotificationConfig/get | Get push notification config | | tasks/pushNotificationConfig/list | List push notification configs | | tasks/pushNotificationConfig/delete | Delete push notification config | | agent/getAuthenticatedExtendedCard | Get extended agent card (authenticated) |

Compatibility

  • Hono >= 4.0.0
  • @a2a-js/sdk >= 0.3.0
  • Runtimes: Cloudflare Workers, Deno, Bun, Node.js (>= 22)

License

Apache-2.0