UAI-1 is the current public message standard for structured AI-to-AI communication.
UAIX shield mark Public interoperability charter UAIX.org Universal Artificial Intelligence Exchange Public standards publication
Current UAI-1
  • Current version UAI-1
  • Plain-English definition Open message format for auditable AI-to-AI exchange
  • Current attribution Michael Joseph Kappel, MCP
  • Start here Get Started, Project Handoff, UAI-1, validator, roadmap, and changelog

Guides

GET-Action Pattern

Required for bounded idempotent GET fallback configuration for L0/L1 clients, separate from Minimal Access and not a replacement for POST JSON endpoints.

  • Record UAIX-DOC-2722
  • Path /en-us/guides/get-action-pattern/
  • Use Canonical public record

Document status

Public standards page Published on UAIX as part of the current public standards record
Code
UAIX-DOC-2722
Surface
Guides
Access
Public and linkable

How to use this page

Use this guide only for bounded idempotent GET fallbacks, with consent, rate limits, auditability, no query-string secrets, and a matching POST path for capable clients.

GET-Action is an bounded writable fallback for clients that can build only simple URLs. It is separate from Minimal Access and it is not a replacement for POST JSON APIs.

Route pattern

Code example
GET /api/{version}/{resource}/{action}?param1=value&idempotency_key=stable-key

Required companion

Every GET-Action endpoint that can change state should have a matching POST endpoint for L2 and higher clients. The POST path owns richer request bodies, structured errors, authentication flows, and ordinary API behavior.

Required controls

  • Idempotency: every write-capable GET-Action requires a stable idempotency_key.
  • Consent: the action must be public-safe or explicitly human-approved before execution.
  • Auditability: store the normalized action, caller class, result, timestamp, idempotency key, and public-safe evidence.
  • Rate limits: enforce crawler-safe and abuse-resistant limits before action execution.
  • Robots and crawlers: keep actions out of sitemaps and deny crawler-triggered execution where possible.
  • No secrets in query strings: never place tokens, passwords, API keys, patient IDs, private messages, or payment data in the URL.

Response shape

Code example
{
  "status": "accepted",
  "action_executed": false,
  "resource_id": "public-record-id",
  "machine_data": {},
  "human_readable_url": "https://example.org/review/action/",
  "next_actions": ["human_review_required"]
}
Transfer formatOptimized (Keyless) JSON
Code example
[]

Field order follows the keyed JSON example, the published schema order, and the public field registry.

Allowed use

  • Simple public-safe preference, acknowledgement, review-request, or queue-intake actions when POST is unavailable to the client.
  • Actions that can be repeated safely with the same idempotency key.
  • Actions that expose no secret, regulated, financial, medical, or private identifier in the URL.

Forbidden use

  • Payments, account changes, destructive actions, publication, irreversible writes, medical actions, or regulated operations without a stronger authenticated POST path and explicit review.
  • Any endpoint that depends on a query-string secret.
  • Any broad claim that writable actions should generally be exposed as GET endpoints.

Boundary

Agent runtimes execute. UAIX records the reviewed communication, memory, trust, evidence, and handoff boundary.

  • Minimal Access is read-only, public-safe, GET-only, URL-only, and must not mutate state.
  • GET-Action is a separate bounded fallback for bounded actions and must not be treated as a replacement for POST JSON APIs.
  • UAIX does not certify runtime safety, truth, consciousness, authorization, medical suitability, or production readiness.

Machine-readable companions

Agent Communication Operating Model

Agent runtimes execute. UAIX records the reviewed communication, memory, trust, evidence, and handoff boundary.

Use Agent Communication Operating Model when a human operator, coding agent, AI agent, or runtime implementer needs portable identity, intent, context, acknowledgement, status, blocker, memory proposal, validation evidence, correction, final report, or handoff records. The matching machine-readable assets are published through Schemas, Registry, Examples, and the Validator.

  • UAIX does not provide automatic sync, hosted messaging, runtime orchestration, official adapters, repository write execution, certification authority, or hosted import mechanisms.
  • Carcinus.org is a separate runtime/orchestrator example that may consume UAIX records. UAIX.org does not implement Carcinus runtime behavior and does not execute Carcinus workflows.
  • LocalEndPoint and other runtimes may consume the published UAIX records as external consumers; UAIX.org does not implement their project-specific runtime features.
  • Durable memory proposals stay separate from task execution records. Do not promote temporary endpoint statuses, session tokens, write tokens, beta platform instructions, local error traces, private keys, or API credentials.