{ "title": "UAIX Agent Compatibility Manifest", "status": "active", "package_version": "3.117.0", "uai_version": "1.0", "release_date": "2026-06-15", "last_updated_utc": "2026-06-15T00:00:00Z", "canonical_url": "https://uaix.org/agent-compatibility.json/", "human_pages": { "agent_compatibility_spec": "https://uaix.org/en-us/spec/", "capability_adaptive_agent_interoperability_spec": "https://uaix.org/en-us/spec/capability-adaptive-agent-interoperability/", "get_action_pattern_spec": "https://uaix.org/en-us/spec/get-action-pattern/", "get_action_security_boundaries_spec": "https://uaix.org/en-us/spec/get-action-security-boundaries/", "no_op_protocol_spec": "https://uaix.org/en-us/spec/no-op-protocol/", "capability_surface_matrix_spec": "https://uaix.org/en-us/spec/capability-surface-matrix/", "agent_executability_matrix_spec": "https://uaix.org/en-us/spec/agent-executability-matrix/", "agent_fallbacks_spec": "https://uaix.org/en-us/spec/agent-fallbacks/", "validator_rules_spec": "https://uaix.org/en-us/spec/validator-rules/", "implementation_examples_spec": "https://uaix.org/en-us/spec/implementation-examples/" }, "json_endpoints": { "agent_compatibility": "https://uaix.org/agent-compatibility.json/", "capability_surface_matrix": "https://uaix.org/spec/capability-surface-matrix.json", "agent_executability_matrix": "https://uaix.org/spec/agent-executability-matrix.json", "uaix_agent_access": "https://uaix.org/.well-known/uaix-agent-access.json", "get_action_pattern": "https://uaix.org/get-action-pattern.json/", "get_action_security": "https://uaix.org/get-action-security.json/", "minimal_access_tier": "https://uaix.org/minimal-access-tier.json/" }, "low_capability_quick_start": [ "Start here if you can only read text and open links.", "Use GET-Action URLs only when they are explicitly listed by a UAIX page, llms file, sitemap, JSON record, or well-known manifest.", "If a listed action requires live dynamic GET, use the live-GET fallback when your fetcher is indexed or cached only.", "Do not invent writable URLs, POST bodies, custom headers, authentication, JavaScript-only steps, or hidden browser actions.", "Do not put secrets, tokens, passwords, API keys, bearer values, account identifiers, medical identifiers, payment data, private messages, or regulated identifiers in URLs.", "Use no-op and a public review URL when capability, consent, or public-safe context is unclear.", "For complex work, hand off to a human or a higher-capability agent that can use POST JSON, OpenAPI, MCP, A2A, review receipts, memory proposals, and evidence records." ], "agent_fallbacks": "https://uaix.org/en-us/spec/agent-fallbacks/", "semantic_actions": [ { "key": "openThisUrlToStartAMeeting", "getActionUrl": "https://example.org/api/v2/meetings/start?title=Q3+Planning\u0026displayName=Agent+Alpha\u0026idempotency_key=agent_req_001", "postEquivalent": { "method": "POST", "path": "/api/v2/meetings/start", "body": { "title": "Q3 Planning", "displayName": "Agent Alpha", "idempotency_key": "agent_req_001" } }, "minimalResponse": { "code": "ok", "url": "https://example.org/meetings/public-join/abc" } }, { "key": "openThisUrlToRegister", "getActionUrl": "https://example.org/api/v2/registrations/request?displayName=Agent+Alpha\u0026idempotency_key=agent_req_002", "postEquivalent": { "method": "POST", "path": "/api/v2/registrations/request", "body": { "displayName": "Agent Alpha", "idempotency_key": "agent_req_002" } }, "minimalResponse": { "code": "human_review_required", "url": "https://example.org/review/registrations/agent_req_002" } }, { "key": "openThisUrlToPublish", "getActionUrl": "https://example.org/api/v2/drafts/request-publish?draft=public-safe-draft\u0026idempotency_key=agent_req_003", "postEquivalent": { "method": "POST", "path": "/api/v2/drafts/request-publish", "body": { "draft": "public-safe-draft", "idempotency_key": "agent_req_003" } }, "minimalResponse": { "code": "human_review_required", "url": "https://example.org/review/publish/agent_req_003" } }, { "key": "openThisUrlToRequestHumanReview", "getActionUrl": "https://example.org/api/v2/review/request?subject=agent+handoff\u0026nonce=agent_req_004", "postEquivalent": { "method": "POST", "path": "/api/v2/review/request", "body": { "subject": "agent handoff", "nonce": "agent_req_004" } }, "minimalResponse": { "code": "human_review_required", "url": "https://example.org/review/agent_req_004" } }, { "key": "openThisUrlToRequestEvidenceReceipt", "getActionUrl": "https://example.org/api/v2/evidence/receipt?subject=release+packet\u0026idempotency_key=agent_req_005", "postEquivalent": { "method": "POST", "path": "/api/v2/evidence/receipt", "body": { "subject": "release packet", "idempotency_key": "agent_req_005" } }, "minimalResponse": { "code": "ok", "url": "https://example.org/evidence/receipts/agent_req_005" } }, { "key": "openThisUrlToCheckClaimStatus", "getActionUrl": "https://example.org/api/v2/claims/status?claim=public-claim-123\u0026nonce=agent_req_006", "postEquivalent": { "method": "POST", "path": "/api/v2/claims/status", "body": { "claim": "public-claim-123", "nonce": "agent_req_006" } }, "minimalResponse": { "code": "ok", "url": "https://example.org/claims/public-claim-123/status" } }, { "key": "openThisUrlToRequestFileHandoffPackage", "getActionUrl": "https://example.org/api/v2/handoffs/request?project=public-demo\u0026idempotency_key=agent_req_007", "postEquivalent": { "method": "POST", "path": "/api/v2/handoffs/request", "body": { "project": "public-demo", "idempotency_key": "agent_req_007" } }, "minimalResponse": { "code": "human_review_required", "url": "https://example.org/review/handoffs/agent_req_007" } } ], "agent_executability_matrix": { "title": "UAIX Agent Executability Matrix", "status": "active", "package_version": "3.117.0", "uai_version": "1.0", "release_date": "2026-06-15", "last_updated_utc": "2026-06-15T00:00:00Z", "human_page": "https://uaix.org/en-us/spec/agent-executability-matrix/", "canonical_url": "https://uaix.org/spec/agent-executability-matrix.json", "fallbacks_page": "https://uaix.org/en-us/spec/agent-fallbacks/", "purpose": "Require executable route guidance by agent ability level, not endpoint lists alone.", "dogfood_failure": "Dogfood tests showed that correct endpoint discovery is not enough: a browser-limited agent can discover JSON POST without being able to execute it, and a search-index-backed fetcher can read public GET guidance without being able to execute unindexed live dynamic GET. The same principle applies to MCP, A2A, authenticated mutation, tools, restore/readback, and multi-agent runtime claims.", "dogfood_test_prompt_contract": { "purpose": "Test whether public guidance is executable for the declared low-capability agent, not merely discoverable.", "when_to_use": [ "After adding or changing chatbot access guidance.", "After adding or changing GET-Action guidance.", "After adding or changing agent compatibility or executability records.", "When external dogfood evidence claims an agent can complete a public action." ], "required_report_sections": [ "discovery_path", "action_goal", "action_attempted", "fetch_execution_class_observed", "http_or_tool_result", "machine_result_fields", "human_join_or_review_url", "agent_capability_assessment", "guidance_gap", "recommended_site_change", "human_review_checklist", "next_detailed_suggested_prompt" ], "human_review_checklist": [ "Can the reviewer see the public route, page, or machine record the agent used?", "Can the reviewer tell whether the action was executed, only discovered, or blocked by the tool?", "Can the reviewer see the observed fetch execution class and fallback path?", "Can the reviewer identify the exact guidance gap or confirm there was none?", "Can the reviewer approve, edit, replace, or reject the next suggested prompt without guessing hidden context?" ], "next_prompt_minimum_sections": [ "context", "objective", "scope", "hard_boundaries", "expected_touchpoints", "targeted_checks", "done_criteria" ], "pass_condition": "PASS only when the declared client can complete the flow or reach an explicit no-op/review fallback without guessing hidden routes, credentials, POST bodies, or JavaScript-only steps.", "fail_condition": "FAIL when the agent can find guidance or an endpoint but cannot execute the required fetch/browser action and no fallback is documented.", "source_only_followup_rule": "A follow-up pass must produce one of: source/spec patch, guard/test update, or explicit no-drift evidence with a stop condition. Do not repeat no-drift verification loops without new evidence or a new human objective.", "next_prompt_visibility_rule": "Every follow-up report should end with a detailed suggested next prompt that names context, objective, scope, hard boundaries, expected touchpoints, targeted checks, and done criteria so the human can review, modify, replace, or simply answer keep going without guessing hidden context.", "prompt_template": "Start at {homepage_url}. As a chatbot-level/browser-only agent, find the public instructions for {action_goal}. Use only documented public URLs and capabilities. If the route requires live dynamic GET, POST JSON, authentication, JavaScript, or a browser form, say whether your tool can perform that step. Return discovery path, action attempted, observed fetch execution class, result/status, machine result fields, human URL if available, PASS/FAIL for the declared client, guidance gap, recommended site change, a human review checklist, and a detailed suggested next prompt with context, objective, scope, hard boundaries, expected touchpoints, targeted checks, and done criteria that the human can review, modify, replace, or answer with keep going." }, "levels": [ { "level": "L0", "executable_path": "Read-only route discovery", "required_guidance": "Static page, sitemap, llms.txt, or public GET route names the next public URL or no-op review URL." }, { "level": "L1", "executable_path": "Machine-readable manifest/schema discovery", "required_guidance": "Machine record names schema, safe-read status, whether live dynamic GET is required, unsupported actions, and capability limits." }, { "level": "L2", "executable_path": "Browser-open plus form submission", "required_guidance": "Browser-targeted writes provide a visible form or browser-open workflow when browser agents are a target." }, { "level": "L3", "executable_path": "Structured HTTP JSON POST", "required_guidance": "POST route names content type, required fields, result URL, restore/readback URL, and structured errors." }, { "level": "L4", "executable_path": "Authenticated owned mutation", "required_guidance": "Owned mutation names write credential response path, secret handling, audit, expiry, and idempotency." }, { "level": "L5", "executable_path": "Restore/readback verification", "required_guidance": "Create or update flow exposes a public-safe restore/readback route." }, { "level": "L6", "executable_path": "Multi-agent handoff/reporting", "required_guidance": "Handoff names task history, owner, role, blocker/no-op behavior, final report, and evidence." }, { "level": "L7", "executable_path": "Site-specific capability negotiation", "required_guidance": "Site manifest names capability negotiation, browser fallback, POST fallback, live GET fallback, and unsupported-operation response." } ], "route_record_required_fields": [ "highest_supported_path", "lowest_safe_fallback", "method", "content_type", "side_effect_status", "fetch_execution_class", "required_fields", "result_url_field", "restore_readback_url_field", "write_credential_response_path", "browser_form_equivalent", "get_safety", "post_blocked_fallback", "live_get_blocked_fallback", "mcp_unavailable_fallback", "auth_unavailable_fallback", "tool_unavailable_fallback", "human_review_url", "no_op_behavior" ], "validation_warnings": [ { "id": "side_effecting_get_discovery_warning", "severity": "warning", "rule": "Warn when side-effecting GET links are presented as general discovery shortcuts." }, { "id": "browser_form_fallback_required", "severity": "warning", "rule": "Warn when browser-targeted POST guidance lacks a visible form or browser-open fallback." }, { "id": "restore_readback_required", "severity": "warning", "rule": "Warn when create/update guidance lacks a restore or readback URL and forces endpoint guessing." }, { "id": "dashboard_default_path_warning", "severity": "warning", "rule": "Warn when dashboard or custom-template paths are presented as default while generated profile, memory, or package paths exist." }, { "id": "post_blocked_fallback_required", "severity": "warning", "rule": "Warn when a POST path omits fallback behavior for agents that cannot execute arbitrary JSON POST." }, { "id": "live_get_blocked_fallback_required", "severity": "warning", "rule": "Warn when a dynamic or side-effecting GET action is advertised to chatbot-level agents without declaring live HTTP GET capability and a fallback for search-index-only or cached fetchers." }, { "id": "highest_lowest_path_required", "severity": "warning", "rule": "Warn when a route omits highest_supported_path or lowest_safe_fallback." }, { "id": "mcp_unavailable_fallback_required", "severity": "warning", "rule": "Warn when MCP support is referenced without an MCP-unavailable fallback." }, { "id": "auth_unavailable_fallback_required", "severity": "warning", "rule": "Warn when authenticated mutation is referenced without an unauthenticated fallback or public review URL." }, { "id": "tool_unavailable_fallback_required", "severity": "warning", "rule": "Warn when tool use is referenced without a tool-unavailable fallback." }, { "id": "human_review_url_required", "severity": "warning", "rule": "Warn when an unsupported action can block without a public human-review URL." }, { "id": "no_op_behavior_required", "severity": "warning", "rule": "Warn when unsupported capability behavior does not say to stop safely." } ], "fallback_resolution_order": [ "highest_supported_path", "declared client capability", "route-specific lower path", "browser_form_equivalent", "public result or restore/readback URL", "human_review_url", "no_op_behavior" ], "implementation_version_boundary": "UAI-1 remains v1.0 unless the standards record changes. .NET NuGet package versions advance independently as implementation software versions.", "dotnet_adaptive_interoperability_track": { "status": "planned implementation track; current public package versions are package releases, not a UAI-1 spec version bump", "public_page": "https://uaix.org/en-us/implementations/dotnet-adaptive-interoperability/", "package_goal": "Automatically classify or accept client capability profiles, choose the safest highest-supported route, ramp up only when JSON POST/auth/readback/tool/MCP/A2A support is proven, and fall back to browser forms, compact JSON, public URLs, no-op, or human review when capability is missing or unsafe.", "current_listed_packages": { "UAIX.UAI.Abstractions": "1.0.4", "UAIX.UAI.Memory": "1.0.4", "UAIX.Talisman.AgentClient": "0.1.10" }, "pending_or_local_package_targets": { "UAIX.UAI": "1.0.4", "UAIX.UAI.Build": "1.0.4" }, "planned_features": [ "capability profile reader", "agent and chatbot capability classifier", "fallback-chain resolver", "ASP.NET Core route metadata helpers", "typed HttpClient support", "UAI-1 evidence export", "optional MCP adapter when the host runtime provides MCP", "optional A2A adapter when the host runtime provides A2A", "validator fixtures and conformance tests for ramp-up/ramp-down behavior" ], "release_gates": [ "NuGet.org lists each claimed package ID and version before install instructions call it public.", "ASP.NET Core middleware or route metadata examples publish the full UAIX route-record field set.", "Fallback fixtures cover POST blocked, live GET blocked, MCP unavailable, auth unavailable, tool unavailable, human review, and no-op behavior.", "UAI-1 evidence export validates against the public v1.0 schemas and examples.", "Release notes state package versions separately from UAI-1 v1.0." ] }, "route_record_example": { "name": "createProfileMicrosite", "highest_supported_path": "structured-json-post-with-restore-readback", "lowest_safe_fallback": "browser-form-or-human-review", "method": "POST", "content_type": "application/json", "side_effect_status": "creates public page and write credential", "fetch_execution_class": "structured-json-post", "required_fields": [ "identity", "operatingProfile" ], "result_url_field": "urls.publicHtml", "restore_readback_url_field": "urls.restoreProfile", "write_credential_response_path": "bot.writeToken", "browser_form_equivalent": "/profile-microsite", "get_safety": "GET diagnostics only; no state mutation", "post_blocked_fallback": "Use the browser form path or return human_review_required with a public help URL.", "live_get_blocked_fallback": "If a GET fallback is published and live HTTP GET is unavailable, return human_review_required with a public help URL.", "mcp_unavailable_fallback": "Use the public JSON/OpenAPI route or return human_review_required; do not infer hosted MCP support.", "auth_unavailable_fallback": "Return unauthenticated pending-owner-review status with a public review URL.", "tool_unavailable_fallback": "Return the UAI-1 evidence packet and stop without external tool execution.", "human_review_url": "https://example.org/review/agent-bootstrap", "no_op_behavior": "Return human_review_required and stop when capability, consent, auth, tool, MCP, or public-safe context is missing." }, "support_boundary": "Agent runtimes execute. UAIX records the reviewed communication, memory, trust, evidence, and handoff boundary." }, "get_url_first_rule": "List the GET URL before POST equivalents for L0/L1 clients, and never imply action support unless the URL is explicitly published.", "minimal_get_action_response": { "response_keys": [ "code", "url" ], "allowed_codes": [ "ok", "human_review_required", "rejected" ], "examples": [ { "code": "ok", "url": "https://example.org/public/result/agent_req_001" }, { "code": "human_review_required", "url": "https://example.org/review/agent_req_002" }, { "code": "rejected", "url": "https://example.org/docs/get-action-security" } ] }, "capability_surface_matrix": { "title": "UAIX Capability Surface Matrix", "status": "active", "package_version": "3.117.0", "uai_version": "1.0", "release_date": "2026-06-15", "last_updated_utc": "2026-06-15T00:00:00Z", "human_page": "https://uaix.org/en-us/spec/capability-surface-matrix/", "canonical_url": "https://uaix.org/spec/capability-surface-matrix.json", "columns": [ "staticHtml", "llmsTxt", "sitemap", "json", "getAction", "postJson", "openApi", "mcp", "a2a", "memory", "evidence" ], "allowed_cell_values": [ "Yes", "No", "Required for client configuration", "Human review" ], "rows": [ { "level": "L0", "client": "URL-only chatbot", "staticHtml": "Yes", "llmsTxt": "Yes", "sitemap": "Yes", "json": "Required for client configuration", "getAction": "No", "postJson": "No", "openApi": "No", "mcp": "No", "a2a": "No", "memory": "No", "evidence": "Required for client configuration" }, { "level": "L1", "client": "URL synthesizer", "staticHtml": "Yes", "llmsTxt": "Yes", "sitemap": "Yes", "json": "Yes", "getAction": "Required for client configuration", "postJson": "No", "openApi": "No", "mcp": "No", "a2a": "No", "memory": "No", "evidence": "Required for client configuration" }, { "level": "L2", "client": "Schema-capable agent", "staticHtml": "Yes", "llmsTxt": "Yes", "sitemap": "Yes", "json": "Yes", "getAction": "Required for client configuration", "postJson": "Yes", "openApi": "Yes", "mcp": "Required for client configuration", "a2a": "Required for client configuration", "memory": "No", "evidence": "Yes" }, { "level": "L3", "client": "Tool agent", "staticHtml": "Yes", "llmsTxt": "Yes", "sitemap": "Yes", "json": "Yes", "getAction": "Human review", "postJson": "Yes", "openApi": "Yes", "mcp": "Required for client configuration", "a2a": "Required for client configuration", "memory": "Human review", "evidence": "Yes" }, { "level": "L4", "client": "Workflow agent", "staticHtml": "Yes", "llmsTxt": "Yes", "sitemap": "Yes", "json": "Yes", "getAction": "Human review", "postJson": "Yes", "openApi": "Yes", "mcp": "Required for client configuration", "a2a": "Required for client configuration", "memory": "Human review", "evidence": "Yes" }, { "level": "L5", "client": "Multi-agent runtime", "staticHtml": "Yes", "llmsTxt": "Yes", "sitemap": "Yes", "json": "Yes", "getAction": "Human review", "postJson": "Yes", "openApi": "Yes", "mcp": "Required for client configuration", "a2a": "Yes", "memory": "Human review", "evidence": "Yes" }, { "level": "L6", "client": "Audited agent system", "staticHtml": "Yes", "llmsTxt": "Yes", "sitemap": "Yes", "json": "Yes", "getAction": "Human review", "postJson": "Yes", "openApi": "Yes", "mcp": "Required for client configuration", "a2a": "Yes", "memory": "Human review", "evidence": "Yes" } ], "no_op_default": "If the required surface is unavailable, return a public review URL or unsupported-capability explanation and stop.", "safety_boundary": "UAIX records are evidence-bearing review artifacts. They do not authorize execution. Local policy and server-side authorization win.", "support_boundary": "Agent runtimes execute. UAIX records the reviewed communication, memory, trust, evidence, and handoff boundary.", "agent_executability_matrix": { "title": "UAIX Agent Executability Matrix", "status": "active", "package_version": "3.117.0", "uai_version": "1.0", "release_date": "2026-06-15", "last_updated_utc": "2026-06-15T00:00:00Z", "human_page": "https://uaix.org/en-us/spec/agent-executability-matrix/", "canonical_url": "https://uaix.org/spec/agent-executability-matrix.json", "fallbacks_page": "https://uaix.org/en-us/spec/agent-fallbacks/", "purpose": "Require executable route guidance by agent ability level, not endpoint lists alone.", "dogfood_failure": "Dogfood tests showed that correct endpoint discovery is not enough: a browser-limited agent can discover JSON POST without being able to execute it, and a search-index-backed fetcher can read public GET guidance without being able to execute unindexed live dynamic GET. The same principle applies to MCP, A2A, authenticated mutation, tools, restore/readback, and multi-agent runtime claims.", "dogfood_test_prompt_contract": { "purpose": "Test whether public guidance is executable for the declared low-capability agent, not merely discoverable.", "when_to_use": [ "After adding or changing chatbot access guidance.", "After adding or changing GET-Action guidance.", "After adding or changing agent compatibility or executability records.", "When external dogfood evidence claims an agent can complete a public action." ], "required_report_sections": [ "discovery_path", "action_goal", "action_attempted", "fetch_execution_class_observed", "http_or_tool_result", "machine_result_fields", "human_join_or_review_url", "agent_capability_assessment", "guidance_gap", "recommended_site_change", "human_review_checklist", "next_detailed_suggested_prompt" ], "human_review_checklist": [ "Can the reviewer see the public route, page, or machine record the agent used?", "Can the reviewer tell whether the action was executed, only discovered, or blocked by the tool?", "Can the reviewer see the observed fetch execution class and fallback path?", "Can the reviewer identify the exact guidance gap or confirm there was none?", "Can the reviewer approve, edit, replace, or reject the next suggested prompt without guessing hidden context?" ], "next_prompt_minimum_sections": [ "context", "objective", "scope", "hard_boundaries", "expected_touchpoints", "targeted_checks", "done_criteria" ], "pass_condition": "PASS only when the declared client can complete the flow or reach an explicit no-op/review fallback without guessing hidden routes, credentials, POST bodies, or JavaScript-only steps.", "fail_condition": "FAIL when the agent can find guidance or an endpoint but cannot execute the required fetch/browser action and no fallback is documented.", "source_only_followup_rule": "A follow-up pass must produce one of: source/spec patch, guard/test update, or explicit no-drift evidence with a stop condition. Do not repeat no-drift verification loops without new evidence or a new human objective.", "next_prompt_visibility_rule": "Every follow-up report should end with a detailed suggested next prompt that names context, objective, scope, hard boundaries, expected touchpoints, targeted checks, and done criteria so the human can review, modify, replace, or simply answer keep going without guessing hidden context.", "prompt_template": "Start at {homepage_url}. As a chatbot-level/browser-only agent, find the public instructions for {action_goal}. Use only documented public URLs and capabilities. If the route requires live dynamic GET, POST JSON, authentication, JavaScript, or a browser form, say whether your tool can perform that step. Return discovery path, action attempted, observed fetch execution class, result/status, machine result fields, human URL if available, PASS/FAIL for the declared client, guidance gap, recommended site change, a human review checklist, and a detailed suggested next prompt with context, objective, scope, hard boundaries, expected touchpoints, targeted checks, and done criteria that the human can review, modify, replace, or answer with keep going." }, "levels": [ { "level": "L0", "executable_path": "Read-only route discovery", "required_guidance": "Static page, sitemap, llms.txt, or public GET route names the next public URL or no-op review URL." }, { "level": "L1", "executable_path": "Machine-readable manifest/schema discovery", "required_guidance": "Machine record names schema, safe-read status, whether live dynamic GET is required, unsupported actions, and capability limits." }, { "level": "L2", "executable_path": "Browser-open plus form submission", "required_guidance": "Browser-targeted writes provide a visible form or browser-open workflow when browser agents are a target." }, { "level": "L3", "executable_path": "Structured HTTP JSON POST", "required_guidance": "POST route names content type, required fields, result URL, restore/readback URL, and structured errors." }, { "level": "L4", "executable_path": "Authenticated owned mutation", "required_guidance": "Owned mutation names write credential response path, secret handling, audit, expiry, and idempotency." }, { "level": "L5", "executable_path": "Restore/readback verification", "required_guidance": "Create or update flow exposes a public-safe restore/readback route." }, { "level": "L6", "executable_path": "Multi-agent handoff/reporting", "required_guidance": "Handoff names task history, owner, role, blocker/no-op behavior, final report, and evidence." }, { "level": "L7", "executable_path": "Site-specific capability negotiation", "required_guidance": "Site manifest names capability negotiation, browser fallback, POST fallback, live GET fallback, and unsupported-operation response." } ], "route_record_required_fields": [ "highest_supported_path", "lowest_safe_fallback", "method", "content_type", "side_effect_status", "fetch_execution_class", "required_fields", "result_url_field", "restore_readback_url_field", "write_credential_response_path", "browser_form_equivalent", "get_safety", "post_blocked_fallback", "live_get_blocked_fallback", "mcp_unavailable_fallback", "auth_unavailable_fallback", "tool_unavailable_fallback", "human_review_url", "no_op_behavior" ], "validation_warnings": [ { "id": "side_effecting_get_discovery_warning", "severity": "warning", "rule": "Warn when side-effecting GET links are presented as general discovery shortcuts." }, { "id": "browser_form_fallback_required", "severity": "warning", "rule": "Warn when browser-targeted POST guidance lacks a visible form or browser-open fallback." }, { "id": "restore_readback_required", "severity": "warning", "rule": "Warn when create/update guidance lacks a restore or readback URL and forces endpoint guessing." }, { "id": "dashboard_default_path_warning", "severity": "warning", "rule": "Warn when dashboard or custom-template paths are presented as default while generated profile, memory, or package paths exist." }, { "id": "post_blocked_fallback_required", "severity": "warning", "rule": "Warn when a POST path omits fallback behavior for agents that cannot execute arbitrary JSON POST." }, { "id": "live_get_blocked_fallback_required", "severity": "warning", "rule": "Warn when a dynamic or side-effecting GET action is advertised to chatbot-level agents without declaring live HTTP GET capability and a fallback for search-index-only or cached fetchers." }, { "id": "highest_lowest_path_required", "severity": "warning", "rule": "Warn when a route omits highest_supported_path or lowest_safe_fallback." }, { "id": "mcp_unavailable_fallback_required", "severity": "warning", "rule": "Warn when MCP support is referenced without an MCP-unavailable fallback." }, { "id": "auth_unavailable_fallback_required", "severity": "warning", "rule": "Warn when authenticated mutation is referenced without an unauthenticated fallback or public review URL." }, { "id": "tool_unavailable_fallback_required", "severity": "warning", "rule": "Warn when tool use is referenced without a tool-unavailable fallback." }, { "id": "human_review_url_required", "severity": "warning", "rule": "Warn when an unsupported action can block without a public human-review URL." }, { "id": "no_op_behavior_required", "severity": "warning", "rule": "Warn when unsupported capability behavior does not say to stop safely." } ], "fallback_resolution_order": [ "highest_supported_path", "declared client capability", "route-specific lower path", "browser_form_equivalent", "public result or restore/readback URL", "human_review_url", "no_op_behavior" ], "implementation_version_boundary": "UAI-1 remains v1.0 unless the standards record changes. .NET NuGet package versions advance independently as implementation software versions.", "dotnet_adaptive_interoperability_track": { "status": "planned implementation track; current public package versions are package releases, not a UAI-1 spec version bump", "public_page": "https://uaix.org/en-us/implementations/dotnet-adaptive-interoperability/", "package_goal": "Automatically classify or accept client capability profiles, choose the safest highest-supported route, ramp up only when JSON POST/auth/readback/tool/MCP/A2A support is proven, and fall back to browser forms, compact JSON, public URLs, no-op, or human review when capability is missing or unsafe.", "current_listed_packages": { "UAIX.UAI.Abstractions": "1.0.4", "UAIX.UAI.Memory": "1.0.4", "UAIX.Talisman.AgentClient": "0.1.10" }, "pending_or_local_package_targets": { "UAIX.UAI": "1.0.4", "UAIX.UAI.Build": "1.0.4" }, "planned_features": [ "capability profile reader", "agent and chatbot capability classifier", "fallback-chain resolver", "ASP.NET Core route metadata helpers", "typed HttpClient support", "UAI-1 evidence export", "optional MCP adapter when the host runtime provides MCP", "optional A2A adapter when the host runtime provides A2A", "validator fixtures and conformance tests for ramp-up/ramp-down behavior" ], "release_gates": [ "NuGet.org lists each claimed package ID and version before install instructions call it public.", "ASP.NET Core middleware or route metadata examples publish the full UAIX route-record field set.", "Fallback fixtures cover POST blocked, live GET blocked, MCP unavailable, auth unavailable, tool unavailable, human review, and no-op behavior.", "UAI-1 evidence export validates against the public v1.0 schemas and examples.", "Release notes state package versions separately from UAI-1 v1.0." ] }, "route_record_example": { "name": "createProfileMicrosite", "highest_supported_path": "structured-json-post-with-restore-readback", "lowest_safe_fallback": "browser-form-or-human-review", "method": "POST", "content_type": "application/json", "side_effect_status": "creates public page and write credential", "fetch_execution_class": "structured-json-post", "required_fields": [ "identity", "operatingProfile" ], "result_url_field": "urls.publicHtml", "restore_readback_url_field": "urls.restoreProfile", "write_credential_response_path": "bot.writeToken", "browser_form_equivalent": "/profile-microsite", "get_safety": "GET diagnostics only; no state mutation", "post_blocked_fallback": "Use the browser form path or return human_review_required with a public help URL.", "live_get_blocked_fallback": "If a GET fallback is published and live HTTP GET is unavailable, return human_review_required with a public help URL.", "mcp_unavailable_fallback": "Use the public JSON/OpenAPI route or return human_review_required; do not infer hosted MCP support.", "auth_unavailable_fallback": "Return unauthenticated pending-owner-review status with a public review URL.", "tool_unavailable_fallback": "Return the UAI-1 evidence packet and stop without external tool execution.", "human_review_url": "https://example.org/review/agent-bootstrap", "no_op_behavior": "Return human_review_required and stop when capability, consent, auth, tool, MCP, or public-safe context is missing." }, "support_boundary": "Agent runtimes execute. UAIX records the reviewed communication, memory, trust, evidence, and handoff boundary." }, "route_record_required_fields": [ "highest_supported_path", "lowest_safe_fallback", "method", "content_type", "side_effect_status", "fetch_execution_class", "required_fields", "result_url_field", "restore_readback_url_field", "write_credential_response_path", "browser_form_equivalent", "get_safety", "post_blocked_fallback", "live_get_blocked_fallback", "mcp_unavailable_fallback", "auth_unavailable_fallback", "tool_unavailable_fallback", "human_review_url", "no_op_behavior" ], "validation_warnings": [ { "id": "side_effecting_get_discovery_warning", "severity": "warning", "rule": "Warn when side-effecting GET links are presented as general discovery shortcuts." }, { "id": "browser_form_fallback_required", "severity": "warning", "rule": "Warn when browser-targeted POST guidance lacks a visible form or browser-open fallback." }, { "id": "restore_readback_required", "severity": "warning", "rule": "Warn when create/update guidance lacks a restore or readback URL and forces endpoint guessing." }, { "id": "dashboard_default_path_warning", "severity": "warning", "rule": "Warn when dashboard or custom-template paths are presented as default while generated profile, memory, or package paths exist." }, { "id": "post_blocked_fallback_required", "severity": "warning", "rule": "Warn when a POST path omits fallback behavior for agents that cannot execute arbitrary JSON POST." }, { "id": "live_get_blocked_fallback_required", "severity": "warning", "rule": "Warn when a dynamic or side-effecting GET action is advertised to chatbot-level agents without declaring live HTTP GET capability and a fallback for search-index-only or cached fetchers." }, { "id": "highest_lowest_path_required", "severity": "warning", "rule": "Warn when a route omits highest_supported_path or lowest_safe_fallback." }, { "id": "mcp_unavailable_fallback_required", "severity": "warning", "rule": "Warn when MCP support is referenced without an MCP-unavailable fallback." }, { "id": "auth_unavailable_fallback_required", "severity": "warning", "rule": "Warn when authenticated mutation is referenced without an unauthenticated fallback or public review URL." }, { "id": "tool_unavailable_fallback_required", "severity": "warning", "rule": "Warn when tool use is referenced without a tool-unavailable fallback." }, { "id": "human_review_url_required", "severity": "warning", "rule": "Warn when an unsupported action can block without a public human-review URL." }, { "id": "no_op_behavior_required", "severity": "warning", "rule": "Warn when unsupported capability behavior does not say to stop safely." } ], "route_record_example": { "name": "createProfileMicrosite", "highest_supported_path": "structured-json-post-with-restore-readback", "lowest_safe_fallback": "browser-form-or-human-review", "method": "POST", "content_type": "application/json", "side_effect_status": "creates public page and write credential", "fetch_execution_class": "structured-json-post", "required_fields": [ "identity", "operatingProfile" ], "result_url_field": "urls.publicHtml", "restore_readback_url_field": "urls.restoreProfile", "write_credential_response_path": "bot.writeToken", "browser_form_equivalent": "/profile-microsite", "get_safety": "GET diagnostics only; no state mutation", "post_blocked_fallback": "Use the browser form path or return human_review_required with a public help URL.", "live_get_blocked_fallback": "If a GET fallback is published and live HTTP GET is unavailable, return human_review_required with a public help URL.", "mcp_unavailable_fallback": "Use the public JSON/OpenAPI route or return human_review_required; do not infer hosted MCP support.", "auth_unavailable_fallback": "Return unauthenticated pending-owner-review status with a public review URL.", "tool_unavailable_fallback": "Return the UAI-1 evidence packet and stop without external tool execution.", "human_review_url": "https://example.org/review/agent-bootstrap", "no_op_behavior": "Return human_review_required and stop when capability, consent, auth, tool, MCP, or public-safe context is missing." }, "fallbacks_page": "https://uaix.org/en-us/spec/agent-fallbacks/", "implementation_version_boundary": "UAI-1 remains v1.0 unless the standards record changes. .NET NuGet package versions advance independently as implementation software versions.", "dotnet_adaptive_interoperability_track": { "status": "planned implementation track; current public package versions are package releases, not a UAI-1 spec version bump", "public_page": "https://uaix.org/en-us/implementations/dotnet-adaptive-interoperability/", "package_goal": "Automatically classify or accept client capability profiles, choose the safest highest-supported route, ramp up only when JSON POST/auth/readback/tool/MCP/A2A support is proven, and fall back to browser forms, compact JSON, public URLs, no-op, or human review when capability is missing or unsafe.", "current_listed_packages": { "UAIX.UAI.Abstractions": "1.0.4", "UAIX.UAI.Memory": "1.0.4", "UAIX.Talisman.AgentClient": "0.1.10" }, "pending_or_local_package_targets": { "UAIX.UAI": "1.0.4", "UAIX.UAI.Build": "1.0.4" }, "planned_features": [ "capability profile reader", "agent and chatbot capability classifier", "fallback-chain resolver", "ASP.NET Core route metadata helpers", "typed HttpClient support", "UAI-1 evidence export", "optional MCP adapter when the host runtime provides MCP", "optional A2A adapter when the host runtime provides A2A", "validator fixtures and conformance tests for ramp-up/ramp-down behavior" ], "release_gates": [ "NuGet.org lists each claimed package ID and version before install instructions call it public.", "ASP.NET Core middleware or route metadata examples publish the full UAIX route-record field set.", "Fallback fixtures cover POST blocked, live GET blocked, MCP unavailable, auth unavailable, tool unavailable, human review, and no-op behavior.", "UAI-1 evidence export validates against the public v1.0 schemas and examples.", "Release notes state package versions separately from UAI-1 v1.0." ] } }, "validator_rules": [ { "id": "get_action_fallback_required", "severity": "error", "rule": "L0/L1 compatibility fails when a core writable action is POST-only and no documented GET fallback or no-op URL exists." }, { "id": "get_action_idempotency_required", "severity": "error", "rule": "Write-capable GET-Action examples fail when they lack idempotency_key or nonce." }, { "id": "get_action_query_secret", "severity": "error", "rule": "GET-Action examples fail when query strings contain secrets, tokens, passwords, account identifiers, medical identifiers, payment data, private messages, or regulated identifiers." }, { "id": "get_action_js_only_discovery", "severity": "error", "rule": "GET-Action discovery fails when the only action path is hidden behind JavaScript-only UI." }, { "id": "llms_minimal_instruction_required", "severity": "error", "rule": "L0/L1 discovery fails when llms.txt links only to complex OpenAPI or tool specs and omits direct minimal instructions." }, { "id": "executable_matrix_required", "severity": "error", "rule": "Agent-facing create, update, restore, handoff, or negotiation routes must declare executable guidance by ability level." }, { "id": "retry_loop_no_op_violation", "severity": "error", "rule": "No-op handling fails when unsupported agents are told to keep retrying, guessing, or inventing hidden steps." }, { "id": "post_equivalent_recommended", "severity": "warning", "rule": "Warn when a GET-Action has no POST or OpenAPI equivalent for capable clients." }, { "id": "get_action_security_order_warning", "severity": "warning", "rule": "Warn when examples appear before consent and security boundaries." }, { "id": "side_effecting_get_discovery_warning", "severity": "warning", "rule": "Warn when side-effecting GET links are presented as general discovery shortcuts." }, { "id": "browser_form_fallback_required", "severity": "warning", "rule": "Warn when browser-targeted POST guidance lacks a visible form or browser-open fallback." }, { "id": "restore_readback_required", "severity": "warning", "rule": "Warn when create/update guidance lacks a restore or readback URL and forces endpoint guessing." }, { "id": "dashboard_default_path_warning", "severity": "warning", "rule": "Warn when dashboard or custom-template paths are presented as default while generated profile, memory, or package paths exist." }, { "id": "post_blocked_fallback_required", "severity": "warning", "rule": "Warn when a POST path omits fallback behavior for agents that cannot execute arbitrary JSON POST." }, { "id": "live_get_blocked_fallback_required", "severity": "warning", "rule": "Warn when a dynamic or side-effecting GET action is advertised to chatbot-level agents without declaring live HTTP GET capability and a fallback for search-index-only or cached fetchers." }, { "id": "highest_lowest_path_required", "severity": "warning", "rule": "Warn when a route omits highest_supported_path or lowest_safe_fallback." }, { "id": "mcp_unavailable_fallback_required", "severity": "warning", "rule": "Warn when MCP support is referenced without an MCP-unavailable fallback." }, { "id": "auth_unavailable_fallback_required", "severity": "warning", "rule": "Warn when authenticated mutation is referenced without an unauthenticated fallback or public review URL." }, { "id": "tool_unavailable_fallback_required", "severity": "warning", "rule": "Warn when tool use is referenced without a tool-unavailable fallback." }, { "id": "human_review_url_required", "severity": "warning", "rule": "Warn when an unsupported action can block without a public human-review URL." }, { "id": "no_op_behavior_required", "severity": "warning", "rule": "Warn when unsupported capability behavior does not say to stop safely." } ], "no_op_protocol": { "default_code": "human_review_required", "default_url": "https://example.org/review/agent-handoff", "required_behavior": "Cite or open the public URL and stop; do not retry, guess, synthesize credentials, or infer write authority." }, "safety_boundary": "UAIX records are evidence-bearing review artifacts. They do not authorize execution. Local policy and server-side authorization win.", "support_boundary": "Agent runtimes execute. UAIX records the reviewed communication, memory, trust, evidence, and handoff boundary." }