npm - @bluefly/openstandardagents - Versions diffs - 0.2.7 → 0.2.9 - Mend

@bluefly/openstandardagents 0.2.7 → 0.2.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (327) hide show

package/.devfile.yaml +1 -1
package/.env.example +1 -1
package/.github/AGENTS.md +245 -0
package/.github/agents/github-issue-triage.ossa.yaml +99 -0
package/.github/agents/github-pr-triage.ossa.yaml +137 -0
package/.github/workflows/issue-sync-to-gitlab.yml +138 -0
package/.github/workflows/pr-triage-to-gitlab.yml +164 -0
package/.version.json +2 -2
package/.wiki-config.json +24 -0
package/CHANGELOG.md +44 -18
package/CODEOWNERS +75 -0
package/CONTRIBUTING.md +103 -4
package/README.md +178 -243
package/dist/index.d.ts +1 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +2 -0
package/dist/index.js.map +1 -1
package/dist/repositories/schema.repository.d.ts +6 -1
package/dist/repositories/schema.repository.d.ts.map +1 -1
package/dist/repositories/schema.repository.js +49 -27
package/dist/repositories/schema.repository.js.map +1 -1
package/dist/services/migration.service.d.ts +4 -3
package/dist/services/migration.service.d.ts.map +1 -1
package/dist/services/migration.service.js +11 -10
package/dist/services/migration.service.js.map +1 -1
package/dist/services/release-automation/release.service.js +1 -1
package/dist/services/release-automation/release.service.js.map +1 -1
package/dist/services/release-automation/schemas/release.schema.js +1 -1
package/dist/services/release-automation/webhook.service.js +3 -3
package/dist/services/release-automation/webhook.service.js.map +1 -1
package/dist/services/runtime/claude/claude-adapter.d.ts +1 -1
package/dist/services/runtime/claude/claude-adapter.d.ts.map +1 -1
package/dist/services/runtime/claude/claude-adapter.js +2 -2
package/dist/services/runtime/claude/claude-adapter.js.map +1 -1
package/dist/spec/v0.2.8/CHANGELOG.md +401 -0
package/dist/spec/v0.2.8/README.md +72 -0
package/dist/spec/v0.2.8/migrations/v0.2.3-to-v0.2.4.md +599 -0
package/dist/spec/v0.2.8/migrations/v0.2.5-RC-to-v0.2.6.md +65 -0
package/dist/spec/v0.2.8/migrations/v0.2.6-to-v0.2.8.md +81 -0
package/{spec/v0.2.6-dev/ossa-0.2.5.schema.json → dist/spec/v0.2.8/ossa-0.2.8.schema.json} +1509 -52
package/dist/spec/v0.2.8/ossa-0.2.8.yaml +581 -0
package/dist/spec/v0.2.9/a2a-protocol.md +1337 -0
package/dist/spec/v0.2.9/agent.md +1946 -0
package/dist/spec/v0.2.9/capabilities/index.yaml +25 -0
package/dist/spec/v0.2.9/capabilities/memory.yaml +251 -0
package/dist/spec/v0.2.9/capability-schema.md +576 -0
package/dist/spec/v0.2.9/compliance-profiles.md +533 -0
package/dist/spec/v0.2.9/conformance-testing.md +1527 -0
package/dist/spec/v0.2.9/gitlab-duo-integration.md +621 -0
package/dist/spec/v0.2.9/ossa-0.2.9.schema.json +3699 -0
package/dist/spec/v0.2.9/runtime-semantics.md +464 -0
package/dist/spec/v0.2.9/security-model.md +1245 -0
package/dist/spec/v0.2.9/semantic-conventions.md +347 -0
package/dist/spec/v0.2.9/types.ts +522 -0
package/dist/types/index.d.ts +3 -2
package/dist/types/index.d.ts.map +1 -1
package/dist/types/policy.d.ts +377 -0
package/dist/types/policy.d.ts.map +1 -0
package/dist/types/policy.js +84 -0
package/dist/types/policy.js.map +1 -0
package/dist/utils/index.d.ts +6 -0
package/dist/utils/index.d.ts.map +1 -0
package/dist/utils/index.js +6 -0
package/dist/utils/index.js.map +1 -0
package/dist/utils/version.d.ts +68 -0
package/dist/utils/version.d.ts.map +1 -0
package/dist/utils/version.js +156 -0
package/dist/utils/version.js.map +1 -0
package/docs/specs/policy-dsl.md +925 -0
package/eslint-report.json +1 -0
package/examples/adk-integration/code-review-workflow.yml +1 -1
package/examples/adk-integration/customer-support.yml +1 -1
package/examples/adk-integration/data-pipeline.yml +1 -1
package/examples/advanced/reasoning-agent.yaml +136 -0
package/examples/advanced/workflows/hybrid-model-strategy.yaml +1 -1
package/examples/agent-manifests/critics/critic-agent.yaml +1 -1
package/examples/agent-manifests/governors/governor-agent.yaml +1 -1
package/examples/agent-manifests/integrators/integrator-agent.yaml +1 -1
package/examples/agent-manifests/judges/judge-agent.yaml +1 -1
package/examples/agent-manifests/monitors/monitor-agent.yaml +1 -1
package/examples/agent-manifests/orchestrators/orchestrator-agent.yaml +1 -1
package/examples/agent-manifests/sample-compliant-agent.yaml +1 -1
package/examples/agent-manifests/workers/worker-agent.yaml +1 -1
package/examples/agents-md/code-agent.ossa.json +100 -0
package/examples/agents-md/monorepo-agent.ossa.yaml +180 -0
package/examples/anthropic/claude-assistant.ossa.json +1 -1
package/examples/autogen/multi-agent.ossa.json +1 -1
package/examples/claude-code/code-reviewer.ossa.yaml +78 -0
package/examples/claude-code/ossa-validator.ossa.yaml +80 -0
package/examples/common_npm/agent-router.ossa.yaml +1 -0
package/examples/common_npm/agent-router.v0.2.2.ossa.yaml +1 -1
package/examples/crewai/research-team.ossa.json +1 -1
package/examples/cursor/code-review-agent.ossa.json +1 -1
package/examples/drupal/gitlab-ml-recommender.ossa.yaml +1 -0
package/examples/drupal/gitlab-ml-recommender.v0.2.2.ossa.yaml +1 -1
package/examples/extensions/agents-md-v1.yml +175 -0
package/examples/extensions/drupal-v1.yml +1 -1
package/examples/extensions/kagent-v1.yml +1 -1
package/examples/getting-started/hello-world-complete.ossa.yaml +1 -1
package/examples/integration-patterns/agent-to-agent-orchestration.ossa.yaml +4 -4
package/examples/kagent/compliance-validator.ossa.yaml +1 -1
package/examples/kagent/cost-optimizer.ossa.yaml +1 -1
package/examples/kagent/documentation-agent.ossa.yaml +1 -1
package/examples/kagent/k8s-troubleshooter-v1.ossa.yaml +1 -0
package/examples/kagent/k8s-troubleshooter-v1.v0.2.2.ossa.yaml +1 -1
package/examples/kagent/k8s-troubleshooter.ossa.yaml +1 -1
package/examples/kagent/security-scanner.ossa.yaml +1 -1
package/examples/langchain/chain-agent.ossa.json +1 -1
package/examples/langflow/workflow-agent.ossa.json +1 -1
package/examples/langgraph/state-machine-agent.ossa.json +1 -1
package/examples/llamaindex/rag-agent.ossa.json +1 -1
package/examples/migration-guides/from-langchain-to-ossa.yaml +4 -4
package/examples/multi-agent/README.md +74 -0
package/examples/multi-agent/conditional-router.ossa.yaml +42 -0
package/examples/multi-agent/parallel-execution.ossa.yaml +54 -0
package/examples/multi-agent/sequential-pipeline.ossa.yaml +45 -0
package/examples/openai/basic-agent.ossa.yaml +1 -1
package/examples/openai/multi-tool-agent.ossa.json +1 -1
package/examples/openai/swarm-agent.ossa.json +1 -1
package/examples/production/document-analyzer-openai.yml +1 -1
package/examples/quickstart/support-agent.ossa.yaml +1 -1
package/examples/spec-examples/audit-agent.yml +1 -1
package/examples/spec-examples/chat-agent.yml +1 -1
package/examples/spec-examples/compliance-agent.yml +1 -1
package/examples/spec-examples/monitoring-agent.yml +1 -1
package/examples/spec-examples/workflow-agent.yml +1 -1
package/examples/templates/ossa-compliance.yaml +1 -1
package/examples/vercel/edge-agent.ossa.json +1 -1
package/gl-code-quality-report.json +62 -0
package/llms-ctx-full.txt +39 -0
package/llms-ctx.txt +39 -0
package/llms.txt +47 -0
package/package.json +6 -3
package/scripts/README.md +25 -0
package/scripts/compliance-audit.ts +796 -0
package/scripts/eslint-to-codequality.cjs +34 -0
package/scripts/generate-agents-catalog.ts +2 -1
package/scripts/generate-api-docs.ts +2 -1
package/scripts/generate-examples-docs.ts +2 -1
package/scripts/generate-llms-ctx.sh +17 -0
package/scripts/generate-schema-docs.ts +31 -10
package/scripts/sync-version.js +4 -12
package/scripts/validate-schema.ts +2 -1
package/spec/v0.2.8/CHANGELOG.md +401 -0
package/spec/v0.2.8/README.md +72 -0
package/spec/v0.2.8/migrations/v0.2.3-to-v0.2.4.md +599 -0
package/spec/v0.2.8/migrations/v0.2.5-RC-to-v0.2.6.md +65 -0
package/spec/v0.2.8/migrations/v0.2.6-to-v0.2.8.md +81 -0
package/spec/{v0.2.6-dev/ossa-0.2.6-dev.schema.json → v0.2.8/ossa-0.2.8.schema.json} +1509 -52
package/spec/v0.2.8/ossa-0.2.8.yaml +581 -0
package/spec/v0.2.9/a2a-protocol.md +1337 -0
package/spec/v0.2.9/agent.md +1946 -0
package/spec/v0.2.9/capabilities/index.yaml +25 -0
package/spec/v0.2.9/capabilities/memory.yaml +251 -0
package/spec/v0.2.9/capability-schema.md +576 -0
package/spec/v0.2.9/compliance-profiles.md +533 -0
package/spec/v0.2.9/conformance-testing.md +1527 -0
package/spec/v0.2.9/gitlab-duo-integration.md +621 -0
package/spec/v0.2.9/ossa-0.2.9.schema.json +3699 -0
package/spec/v0.2.9/runtime-semantics.md +464 -0
package/spec/v0.2.9/security-model.md +1245 -0
package/spec/v0.2.9/semantic-conventions.md +347 -0
package/spec/v0.2.9/types.ts +522 -0
package/test-results/junit.xml +337 -0
package/.github/workflows/pr-comment.yml +0 -33
package/bin/validate-ossa-0.2.5-RC.ts +0 -244
package/dist/spec/v0.2.6-dev/ossa-0.2.5.schema.json +0 -1696
package/dist/spec/v0.2.6-dev/ossa-0.2.6-dev.schema.json +0 -1696
package/scripts/lib/exec.ts +0 -37
package/scripts/lib/file-ops.ts +0 -58
package/scripts/lib/version.ts +0 -83
package/website/.lighthouserc.ts +0 -24
package/website/.prettierrc +0 -10
package/website/DESIGN_SYSTEM_IMPLEMENTATION.md +0 -445
package/website/Dockerfile +0 -30
package/website/app/about/page.tsx +0 -304
package/website/app/blog/[slug]/page.tsx +0 -208
package/website/app/blog/page.tsx +0 -249
package/website/app/design-guide/page.tsx +0 -511
package/website/app/docs/[[...slug]]/page.tsx +0 -847
package/website/app/docs/core-concepts/project-structure/page.tsx +0 -349
package/website/app/ecosystem/page.tsx +0 -410
package/website/app/examples/page.tsx +0 -133
package/website/app/globals.scss +0 -370
package/website/app/layout.tsx +0 -106
package/website/app/license/page.tsx +0 -183
package/website/app/not-found.tsx +0 -18
package/website/app/page.tsx +0 -686
package/website/app/page.tsx.bak +0 -679
package/website/app/page.tsx.bak2 +0 -649
package/website/app/playground/page.tsx +0 -487
package/website/app/robots.ts +0 -19
package/website/app/rss.xml/route.ts +0 -74
package/website/app/schema/page.tsx +0 -1001
package/website/app/sitemap.ts +0 -56
package/website/app/specification/page.tsx +0 -287
package/website/components/InstallCommand.tsx +0 -96
package/website/components/Logo.tsx +0 -97
package/website/components/StructuredData.tsx +0 -65
package/website/components/docs/DocsSearch.tsx +0 -104
package/website/components/docs/DocsSidebar.tsx +0 -155
package/website/components/docs/MarkdownContent.tsx +0 -401
package/website/components/docs/VersionSelector.tsx +0 -105
package/website/components/examples/ExamplesViewer.tsx +0 -293
package/website/components/layout/Footer.tsx +0 -116
package/website/components/layout/Header.tsx +0 -172
package/website/components/schema/SchemaComponentsAccordion.tsx +0 -84
package/website/components/schema/SchemaExplorer.tsx +0 -213
package/website/components/ui/Badge.tsx +0 -82
package/website/components/ui/Button.tsx +0 -116
package/website/components/ui/Card.tsx +0 -167
package/website/components/ui/Checkbox.tsx +0 -141
package/website/components/ui/Input.tsx +0 -169
package/website/components/ui/Radio.tsx +0 -141
package/website/components/ui/Select.tsx +0 -182
package/website/components/ui/Tag.tsx +0 -158
package/website/components/ui/Textarea.tsx +0 -195
package/website/components/ui/index.ts +0 -11
package/website/content/blog/OpenAPI-AI-Agents-Standard.md +0 -285
package/website/content/blog/Why-Formal-Standards-Matter-Now.md +0 -198
package/website/content/blog/gitlab-kubernetes-agent-ecosystem.md +0 -286
package/website/content/blog/introducing-ossa-framework.md +0 -328
package/website/content/blog/ossa-production-results.md +0 -279
package/website/content/blog/welcome-to-ossa.md +0 -43
package/website/content/blog/why-ai-agents-need-open-standard.md +0 -98
package/website/content/docs/00-home.md +0 -153
package/website/content/docs/adapters/openai-adapter.md +0 -693
package/website/content/docs/agents/catalog.md +0 -28
package/website/content/docs/aiflow-framework-integration-with-ossa.md +0 -107
package/website/content/docs/api-reference/index.md +0 -38
package/website/content/docs/api-reference/ossa-core-api.md +0 -634
package/website/content/docs/api-reference/ossa-registry-api.md +0 -515
package/website/content/docs/api-reference/unified-agent-gateway.md +0 -599
package/website/content/docs/architecture/execution-flow.md +0 -335
package/website/content/docs/architecture/multi-agent-systems.md +0 -737
package/website/content/docs/architecture/overview.md +0 -121
package/website/content/docs/architecture/stack-integration.md +0 -461
package/website/content/docs/changelog.md +0 -246
package/website/content/docs/cli-reference/index.md +0 -111
package/website/content/docs/cli-reference/ossa-agents.md +0 -70
package/website/content/docs/cli-reference/ossa-export.md +0 -56
package/website/content/docs/cli-reference/ossa-generate.md +0 -66
package/website/content/docs/cli-reference/ossa-gitlab-agent.md +0 -57
package/website/content/docs/cli-reference/ossa-import.md +0 -56
package/website/content/docs/cli-reference/ossa-init.md +0 -57
package/website/content/docs/cli-reference/ossa-migrate.md +0 -62
package/website/content/docs/cli-reference/ossa-run.md +0 -66
package/website/content/docs/cli-reference/ossa-schema.md +0 -57
package/website/content/docs/cli-reference/ossa-setup.md +0 -57
package/website/content/docs/cli-reference/ossa-validate.md +0 -66
package/website/content/docs/configuration/index.md +0 -97
package/website/content/docs/contributing.md +0 -599
package/website/content/docs/deployment/github-mirroring.md +0 -924
package/website/content/docs/documentation.md +0 -100
package/website/content/docs/ecosystem/framework-support.md +0 -1361
package/website/content/docs/ecosystem/overview.md +0 -366
package/website/content/docs/errors/index.md +0 -10
package/website/content/docs/examples/aiflow-framework-integration-with-ossa.md +0 -107
package/website/content/docs/examples/catalog.md +0 -300
package/website/content/docs/for-audiences/students-researchers.md +0 -122
package/website/content/docs/getting-started/index.md +0 -92
package/website/content/docs/getting-started/installation.md +0 -155
package/website/content/docs/getting-started/running-agents.md +0 -309
package/website/content/docs/getting-started.md +0 -91
package/website/content/docs/integrations/aiflow.md +0 -104
package/website/content/docs/integrations/drupal.md +0 -105
package/website/content/docs/migration-guides/agent-schema-comparison.md +0 -232
package/website/content/docs/migration-guides/anthropic-mcp-to-ossa.md +0 -1750
package/website/content/docs/migration-guides/crewai-to-ossa.md +0 -274
package/website/content/docs/migration-guides/drupal-eca-to-ossa.md +0 -2017
package/website/content/docs/migration-guides/general-agent-schema.yml +0 -247
package/website/content/docs/migration-guides/index.md +0 -133
package/website/content/docs/migration-guides/langchain-to-ossa.md +0 -1714
package/website/content/docs/migration-guides/langflow-to-ossa.md +0 -2075
package/website/content/docs/migration-guides/migration-manifest.json +0 -64
package/website/content/docs/migration-guides/openai-to-ossa.md +0 -1202
package/website/content/docs/openapi-extensions/examples.md +0 -550
package/website/content/docs/openapi-extensions/index.md +0 -551
package/website/content/docs/openapi-extensions/operation-extensions.md +0 -457
package/website/content/docs/openapi-extensions/root-extensions.md +0 -410
package/website/content/docs/ossa-compliant-badge.md +0 -251
package/website/content/docs/pre-release/index.md +0 -175
package/website/content/docs/quick-reference.md +0 -17
package/website/content/docs/readme.md +0 -35
package/website/content/docs/releases/v0.2.6.md +0 -99
package/website/content/docs/schema-reference/agent-capabilities.md +0 -50
package/website/content/docs/schema-reference/agent-id.md +0 -52
package/website/content/docs/schema-reference/agent-name.md +0 -50
package/website/content/docs/schema-reference/agent-role.md +0 -54
package/website/content/docs/schema-reference/agent-spec.md +0 -406
package/website/content/docs/schema-reference/agent-version.md +0 -50
package/website/content/docs/schema-reference/autonomy.md +0 -568
package/website/content/docs/schema-reference/constraints.md +0 -543
package/website/content/docs/schema-reference/index.md +0 -45
package/website/content/docs/schema-reference/llm-config.md +0 -445
package/website/content/docs/schema-reference/observability.md +0 -654
package/website/content/docs/schema-reference/ossa-manifest.md +0 -309
package/website/content/docs/schema-reference/taxonomy.md +0 -509
package/website/content/docs/schema-reference/tools.md +0 -628
package/website/content/docs/templates/blog-post.md +0 -43
package/website/content/docs/types-reference/index.md +0 -105
package/website/content/docs/use-cases/00-index.md +0 -395
package/website/content/docs/use-cases/cicd-code-review.md +0 -1236
package/website/content/docs/use-cases/customer-support.md +0 -1234
package/website/content/docs/use-cases/enterprise-compliance.md +0 -1208
package/website/content/docs/use-cases/research-multi-agent.md +0 -1161
package/website/content/docs/versioning.md +0 -288
package/website/dev.sh +0 -53
package/website/docker-compose.dev.yml +0 -36
package/website/lib/version.ts +0 -35
package/website/lib/versions.json +0 -103
package/website/next.config.ts +0 -18
package/website/nginx.conf +0 -32
package/website/package-lock.json +0 -9679
package/website/package.json +0 -59
package/website/postcss.config.mjs +0 -9
package/website/scripts/fetch-versions.js +0 -166
package/website/scripts/generate-examples-index.js +0 -163
package/website/scripts/merge-docs-to-wiki.ts +0 -207
package/website/scripts/sync-version.js +0 -72
package/website/scripts/sync-wiki.ts +0 -322
package/website/scripts/upload-wiki.ts +0 -199
package/website/styles/_spacing.scss +0 -453
package/website/styles/_tokens.scss +0 -245
package/website/styles/_typography.scss +0 -361
package/website/styles/_variables.scss +0 -287
package/website/tailwind.config.ts +0 -170

package/dist/spec/v0.2.9/a2a-protocol.md ADDED Viewed

@@ -0,0 +1,1337 @@
+# OSSA Agent-to-Agent (A2A) Protocol Specification
+**Version**: 0.2.9
+**Status**: Draft
+**Last Updated**: 2025-12-04
+This document defines the Agent-to-Agent (A2A) Protocol for multi-agent communication in OSSA-compliant systems. The A2A protocol enables agents to discover, authenticate, and communicate with each other using standardized message formats and routing patterns.
+## 1. Overview
+The A2A Protocol provides:
+- **Discovery**: Agents advertise capabilities via AgentCard
+- **Authentication**: mTLS, JWT bearer tokens, and OIDC
+- **Routing**: Direct, broadcast, topic-based, and request/response patterns
+- **Task Lifecycle**: Standard states for collaborative work
+- **Streaming**: Support for long-running tasks with progress updates
+- **Push Notifications**: Real-time event delivery
+### Design Principles
+1. **Interoperability**: Works across different OSSA runtime implementations
+2. **Security**: Authentication and encryption by default
+3. **Scalability**: Supports peer-to-peer and hub-spoke topologies
+4. **Observability**: Full W3C trace context propagation
+5. **Simplicity**: Minimal protocol overhead
+---
+## 2. Message Envelope Format
+All A2A messages MUST use the following envelope structure:
+```yaml
+# Message Envelope (v0.2.9)
+version: "ossa/a2a/v0.2.9"
+id: "msg_2kj3h4k2j3h4k"                    # Unique message ID (UUID v7 recommended)
+timestamp: "2025-12-04T19:30:00.000Z"      # ISO 8601 timestamp
+from: "agent://team-a/code-reviewer"       # Sender agent URI
+to: "agent://team-b/code-analyzer"         # Recipient agent URI (or topic)
+correlation_id: "req_abc123"               # Groups related messages
+reply_to: "agent://team-a/code-reviewer"   # Optional: where to send response
+ttl: 300                                   # Time-to-live in seconds
+priority: "normal"                         # normal | high | urgent
+type: "request"                            # request | response | event | command
+payload:
+  # Application-specific payload (see sections below)
+  action: "analyze_code"
+  data:
+    repository: "https://github.com/org/repo"
+    commit_sha: "abc123"
+```
+### Envelope Fields
+| Field | Type | Required | Description |
+|-------|------|----------|-------------|
+| `version` | string | Yes | Protocol version (MUST be `ossa/a2a/v0.2.9`) |
+| `id` | string | Yes | Unique message identifier (UUID) |
+| `timestamp` | ISO8601 | Yes | Message creation time |
+| `from` | URI | Yes | Sender agent URI |
+| `to` | URI | Yes | Recipient agent URI or topic |
+| `correlation_id` | string | No | Groups request/response pairs |
+| `reply_to` | URI | No | Where to send responses |
+| `ttl` | integer | No | Time-to-live in seconds (default: 300) |
+| `priority` | enum | No | Message priority (default: normal) |
+| `type` | enum | Yes | Message type (request/response/event/command) |
+| `payload` | object | Yes | Application-specific message content |
+### Message Types
+```typescript
+type MessageType =
+  | 'request'    // Expects a response
+  | 'response'   // Reply to a request
+  | 'event'      // Fire-and-forget notification
+  | 'command';   // Imperative action (no response expected)
+```
+---
+## 3. Discovery Mechanism
+Agents discover each other through three methods:
+### 3.1 Registry-Based Discovery
+Agents register with a central registry (e.g., Consul, etcd, OSSA Registry).
+```yaml
+# Register agent
+POST /registry/agents
+Content-Type: application/json
+{
+  "agent_card": {
+    "uri": "agent://team-a/code-reviewer",
+    "name": "Code Review Agent",
+    "version": "1.2.3",
+    "capabilities": [
+      "code_analysis",
+      "security_scanning",
+      "style_checking"
+    ],
+    "endpoints": {
+      "http": "https://agents.example.com/code-reviewer",
+      "grpc": "grpc://agents.example.com:50051/code-reviewer"
+    },
+    "transport": ["http", "grpc"],
+    "authentication": ["mtls", "bearer"],
+    "ossa_version": "0.2.9",
+    "metadata": {
+      "team": "engineering",
+      "environment": "production",
+      "region": "us-west-2"
+    }
+  },
+  "ttl": 60  # Re-register every 60 seconds (heartbeat)
+}
+```
+Query registry:
+```yaml
+# Find agents by capability
+GET /registry/agents?capability=code_analysis
+# Response
+{
+  "agents": [
+    {
+      "uri": "agent://team-a/code-reviewer",
+      "capabilities": ["code_analysis", "security_scanning"],
+      "endpoints": {
+        "http": "https://agents.example.com/code-reviewer"
+      },
+      "last_heartbeat": "2025-12-04T19:30:00.000Z",
+      "status": "healthy"
+    }
+  ]
+}
+```
+### 3.2 Broadcast Discovery (DNS-SD)
+Agents broadcast presence via DNS Service Discovery (RFC 6763).
+```bash
+# Publish agent via Avahi/Bonjour
+dns-sd -R "Code Reviewer" _ossa-agent._tcp local 8080 \
+  uri=agent://team-a/code-reviewer \
+  version=0.2.9 \
+  capabilities=code_analysis,security_scanning
+# Discover agents
+dns-sd -B _ossa-agent._tcp local
+```
+**AgentCard via DNS TXT Record**:
+```
+_ossa-agent._tcp.local.
+  PTR code-reviewer.ossa-agent._tcp.local.
+code-reviewer._ossa-agent._tcp.local.
+  SRV 0 0 8080 agent-host.local.
+  TXT "uri=agent://team-a/code-reviewer"
+  TXT "version=0.2.9"
+  TXT "capabilities=code_analysis,security_scanning"
+  TXT "transport=http,grpc"
+  TXT "auth=mtls"
+```
+### 3.3 Multicast Discovery (mDNS)
+Agents use multicast DNS for local network discovery.
+```yaml
+# mDNS announcement packet
+type: PTR
+name: _ossa-agent._tcp.local
+data: code-reviewer._ossa-agent._tcp.local
+type: SRV
+name: code-reviewer._ossa-agent._tcp.local
+priority: 0
+weight: 0
+port: 8080
+target: agent-host.local
+type: TXT
+name: code-reviewer._ossa-agent._tcp.local
+data:
+  - "uri=agent://team-a/code-reviewer"
+  - "capabilities=code_analysis"
+  - "ossa_version=0.2.9"
+```
+---
+## 4. AgentCard Schema
+The AgentCard is a self-describing document that advertises agent capabilities.
+```typescript
+interface AgentCard {
+  // Identity
+  uri: string;                    // Unique agent URI
+  name: string;                   // Human-readable name
+  version: string;                // Semantic version
+  ossa_version: string;           // OSSA spec version
+  // Capabilities
+  capabilities: string[];         // Advertised capabilities
+  tools?: ToolDescriptor[];       // Available tools
+  role?: string;                  // Agent role/specialty
+  // Connectivity
+  endpoints: {
+    http?: string;                // HTTP/REST endpoint
+    grpc?: string;                // gRPC endpoint
+    websocket?: string;           // WebSocket endpoint
+  };
+  transport: Transport[];         // Supported transports
+  // Security
+  authentication: AuthMethod[];   // Supported auth methods
+  encryption: EncryptionSpec;     // Encryption requirements
+  // Metadata
+  metadata?: {
+    team?: string;
+    environment?: string;
+    region?: string;
+    [key: string]: unknown;
+  };
+  // Health
+  status?: 'healthy' | 'degraded' | 'unavailable';
+  last_heartbeat?: string;        // ISO 8601 timestamp
+}
+type Transport = 'http' | 'grpc' | 'websocket' | 'mqtt';
+type AuthMethod = 'mtls' | 'bearer' | 'oidc' | 'api_key';
+interface ToolDescriptor {
+  name: string;
+  description: string;
+  input_schema: JSONSchema;
+  output_schema?: JSONSchema;
+}
+interface EncryptionSpec {
+  tls_required: boolean;
+  min_tls_version: '1.2' | '1.3';
+  cipher_suites?: string[];
+}
+```
+### AgentCard Example
+```yaml
+uri: "agent://team-a/code-reviewer"
+name: "Code Review Agent"
+version: "1.2.3"
+ossa_version: "0.2.9"
+capabilities:
+  - code_analysis
+  - security_scanning
+  - style_checking
+tools:
+  - name: analyze_code
+    description: "Perform static code analysis"
+    input_schema:
+      type: object
+      required: [repository, commit_sha]
+      properties:
+        repository:
+          type: string
+          format: uri
+        commit_sha:
+          type: string
+          pattern: "^[0-9a-f]{40}$"
+  - name: check_security
+    description: "Scan code for security vulnerabilities"
+    input_schema:
+      type: object
+      required: [code]
+      properties:
+        code:
+          type: string
+endpoints:
+  http: "https://agents.example.com/code-reviewer"
+  grpc: "grpc://agents.example.com:50051/code-reviewer"
+transport:
+  - http
+  - grpc
+authentication:
+  - mtls
+  - bearer
+encryption:
+  tls_required: true
+  min_tls_version: "1.3"
+  cipher_suites:
+    - "TLS_AES_256_GCM_SHA384"
+    - "TLS_CHACHA20_POLY1305_SHA256"
+metadata:
+  team: "engineering"
+  environment: "production"
+  region: "us-west-2"
+  cost_per_request: "$0.05"
+status: "healthy"
+last_heartbeat: "2025-12-04T19:30:00.000Z"
+```
+---
+## 5. Authentication Methods
+### 5.1 Mutual TLS (mTLS)
+**Recommended for production**. Both client and server authenticate via X.509 certificates.
+```yaml
+# Agent manifest with mTLS
+apiVersion: ossa/v0.2.9
+kind: Agent
+metadata:
+  name: secure-agent
+spec:
+  security:
+    authentication:
+      type: mtls
+      certificate:
+        path: /etc/ossa/certs/agent.crt
+        key_path: /etc/ossa/certs/agent.key
+      ca_bundle: /etc/ossa/certs/ca.crt
+      verify_client: true
+```
+**Certificate Requirements**:
+- Subject Alternative Name (SAN) MUST include agent URI
+- Common Name (CN) SHOULD be agent name
+- Certificates MUST be valid (not expired)
+- Issuer MUST be trusted CA
+**Example Certificate**:
+```
+Subject: CN=code-reviewer, O=Acme Corp
+SAN:
+  - URI:agent://team-a/code-reviewer
+  - DNS:code-reviewer.agents.example.com
+Issuer: CN=OSSA CA, O=Acme Corp
+Validity: 2025-01-01 to 2026-01-01
+```
+### 5.2 Bearer Token (JWT)
+Agents authenticate using JWT bearer tokens.
+```yaml
+# Agent manifest with JWT
+apiVersion: ossa/v0.2.9
+kind: Agent
+metadata:
+  name: api-agent
+spec:
+  security:
+    authentication:
+      type: bearer
+      token_source:
+        type: file
+        path: /run/secrets/agent-token
+      issuer: "https://auth.example.com"
+      audience: "ossa-agents"
+```
+**JWT Claims**:
+```json
+{
+  "iss": "https://auth.example.com",
+  "sub": "agent://team-a/code-reviewer",
+  "aud": "ossa-agents",
+  "exp": 1735939800,
+  "iat": 1735936200,
+  "capabilities": ["code_analysis", "security_scanning"]
+}
+```
+**HTTP Request with Bearer Token**:
+```http
+POST /agents/code-analyzer/tasks HTTP/1.1
+Host: agents.example.com
+Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9...
+Content-Type: application/json
+{
+  "version": "ossa/a2a/v0.2.9",
+  "from": "agent://team-a/code-reviewer",
+  "to": "agent://team-b/code-analyzer",
+  "payload": {...}
+}
+```
+### 5.3 OpenID Connect (OIDC)
+Agents use OIDC for federated authentication.
+```yaml
+# Agent manifest with OIDC
+apiVersion: ossa/v0.2.9
+kind: Agent
+metadata:
+  name: oidc-agent
+spec:
+  security:
+    authentication:
+      type: oidc
+      provider: "https://accounts.google.com"
+      client_id: "abc123.apps.googleusercontent.com"
+      client_secret:
+        secret_ref:
+          name: oidc-credentials
+          key: client_secret
+      scopes:
+        - openid
+        - profile
+        - ossa.agent
+```
+**OIDC Flow**:
+1. Agent requests token from provider
+2. Provider returns ID token + access token
+3. Agent includes access token in `Authorization` header
+4. Recipient validates token with provider's public keys
+---
+## 6. Routing Patterns
+### 6.1 Direct Routing (Point-to-Point)
+Agent A sends message directly to Agent B.
+```yaml
+version: "ossa/a2a/v0.2.9"
+id: "msg_abc123"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://team-a/code-reviewer"
+to: "agent://team-b/code-analyzer"      # Direct recipient
+type: "request"
+correlation_id: "req_xyz789"
+payload:
+  action: "analyze_code"
+  data:
+    repository: "https://github.com/org/repo"
+    commit_sha: "abc123"
+```
+**Use Case**: Task delegation, peer-to-peer collaboration
+### 6.2 Broadcast Routing (Fan-Out)
+Agent A sends message to all agents in a group.
+```yaml
+version: "ossa/a2a/v0.2.9"
+id: "msg_broadcast_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://orchestrator/main"
+to: "broadcast://team-a/*"              # All agents in team-a
+type: "event"
+payload:
+  event: "deployment_started"
+  data:
+    version: "v1.2.3"
+    environment: "production"
+```
+**Use Case**: Notifications, system-wide announcements
+### 6.3 Topic-Based Routing (Pub/Sub)
+Agents subscribe to topics and receive matching messages.
+```yaml
+# Publisher
+version: "ossa/a2a/v0.2.9"
+id: "msg_topic_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://team-a/code-reviewer"
+to: "topic://code-reviews"              # Topic name
+type: "event"
+payload:
+  event: "review_completed"
+  data:
+    pull_request: "https://github.com/org/repo/pull/42"
+    status: "approved"
+    reviewer: "agent://team-a/code-reviewer"
+```
+**Subscription Example**:
+```yaml
+# Agent subscribes to topic
+apiVersion: ossa/v0.2.9
+kind: Agent
+metadata:
+  name: notification-agent
+spec:
+  messaging:
+    subscriptions:
+      - topic: "topic://code-reviews"
+        handler: on_code_review
+      - topic: "topic://deployments"
+        handler: on_deployment
+        filter:
+          environment: production
+```
+**Use Case**: Event-driven architectures, logging/monitoring
+### 6.4 Request/Response Pattern
+Agent A sends request, Agent B responds with correlation.
+```yaml
+# Request
+version: "ossa/a2a/v0.2.9"
+id: "msg_req_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://team-a/requester"
+to: "agent://team-b/responder"
+type: "request"
+correlation_id: "conv_abc123"
+reply_to: "agent://team-a/requester"
+ttl: 30
+payload:
+  action: "get_analysis"
+  params:
+    file: "src/main.ts"
+---
+# Response
+version: "ossa/a2a/v0.2.9"
+id: "msg_resp_001"
+timestamp: "2025-12-04T19:30:15.000Z"
+from: "agent://team-b/responder"
+to: "agent://team-a/requester"
+type: "response"
+correlation_id: "conv_abc123"           # Same as request
+payload:
+  status: "success"
+  result:
+    issues: []
+    quality_score: 95
+```
+**Use Case**: Synchronous operations, queries
+---
+## 7. Task Lifecycle
+When agents collaborate on tasks, they follow a standard lifecycle:
+```
+┌─────────────────────────────────────────────────────────────────┐
+│                      TASK LIFECYCLE                              │
+├─────────────────────────────────────────────────────────────────┤
+│                                                                  │
+│  ┌──────────┐   ┌──────────┐   ┌──────────┐   ┌──────────┐     │
+│  │SUBMITTED │──▶│ ACCEPTED │──▶│ WORKING  │──▶│COMPLETED │     │
+│  └──────────┘   └──────────┘   └──────────┘   └──────────┘     │
+│       │               │              │              │           │
+│       │               │              │              │           │
+│       │               ▼              ▼              │           │
+│       │         ┌──────────┐   ┌──────────┐        │           │
+│       └────────▶│ REJECTED │   │  FAILED  │◀───────┘           │
+│                 └──────────┘   └──────────┘                     │
+│                                     │                           │
+│                                     ▼                           │
+│                               ┌──────────┐                      │
+│                               │CANCELLED │                      │
+│                               └──────────┘                      │
+│                                                                  │
+└─────────────────────────────────────────────────────────────────┘
+```
+### Task States
+```typescript
+type TaskState =
+  | 'submitted'   // Task sent to agent
+  | 'accepted'    // Agent acknowledged task
+  | 'rejected'    // Agent declined task
+  | 'working'     // Agent processing task
+  | 'completed'   // Task finished successfully
+  | 'failed'      // Task failed with error
+  | 'cancelled';  // Task cancelled by requester
+interface TaskStatus {
+  task_id: string;
+  state: TaskState;
+  progress?: number;          // 0-100
+  message?: string;           // Human-readable status
+  error?: TaskError;
+  started_at?: string;        // ISO 8601
+  completed_at?: string;      // ISO 8601
+}
+interface TaskError {
+  code: string;
+  message: string;
+  details?: unknown;
+  recoverable: boolean;
+}
+```
+### Task Submission
+```yaml
+# Submit task
+version: "ossa/a2a/v0.2.9"
+id: "msg_task_submit_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://team-a/orchestrator"
+to: "agent://team-b/worker"
+type: "request"
+correlation_id: "task_xyz789"
+reply_to: "agent://team-a/orchestrator"
+payload:
+  action: "execute_task"
+  task_id: "task_xyz789"
+  input:
+    operation: "analyze_codebase"
+    parameters:
+      repository: "https://github.com/org/repo"
+      branch: "main"
+```
+### Task Acceptance
+```yaml
+# Accept task
+version: "ossa/a2a/v0.2.9"
+id: "msg_task_accept_001"
+timestamp: "2025-12-04T19:30:01.000Z"
+from: "agent://team-b/worker"
+to: "agent://team-a/orchestrator"
+type: "response"
+correlation_id: "task_xyz789"
+payload:
+  status: "accepted"
+  task_id: "task_xyz789"
+  estimated_duration_seconds: 120
+```
+### Task Progress Updates (Streaming)
+```yaml
+# Progress update
+version: "ossa/a2a/v0.2.9"
+id: "msg_task_progress_001"
+timestamp: "2025-12-04T19:30:30.000Z"
+from: "agent://team-b/worker"
+to: "agent://team-a/orchestrator"
+type: "event"
+correlation_id: "task_xyz789"
+payload:
+  event: "task_progress"
+  task_id: "task_xyz789"
+  state: "working"
+  progress: 50
+  message: "Analyzed 150/300 files"
+```
+### Task Completion
+```yaml
+# Success
+version: "ossa/a2a/v0.2.9"
+id: "msg_task_complete_001"
+timestamp: "2025-12-04T19:32:00.000Z"
+from: "agent://team-b/worker"
+to: "agent://team-a/orchestrator"
+type: "response"
+correlation_id: "task_xyz789"
+payload:
+  status: "completed"
+  task_id: "task_xyz789"
+  result:
+    files_analyzed: 300
+    issues_found: 12
+    quality_score: 87
+---
+# Failure
+version: "ossa/a2a/v0.2.9"
+id: "msg_task_fail_001"
+timestamp: "2025-12-04T19:31:30.000Z"
+from: "agent://team-b/worker"
+to: "agent://team-a/orchestrator"
+type: "response"
+correlation_id: "task_xyz789"
+payload:
+  status: "failed"
+  task_id: "task_xyz789"
+  error:
+    code: "REPOSITORY_UNREACHABLE"
+    message: "Failed to clone repository"
+    details:
+      url: "https://github.com/org/repo"
+      http_status: 404
+    recoverable: true
+```
+### Task Cancellation
+```yaml
+# Cancel request
+version: "ossa/a2a/v0.2.9"
+id: "msg_task_cancel_001"
+timestamp: "2025-12-04T19:31:00.000Z"
+from: "agent://team-a/orchestrator"
+to: "agent://team-b/worker"
+type: "command"
+correlation_id: "task_xyz789"
+payload:
+  action: "cancel_task"
+  task_id: "task_xyz789"
+  reason: "User requested cancellation"
+---
+# Cancel acknowledgment
+version: "ossa/a2a/v0.2.9"
+id: "msg_task_cancelled_001"
+timestamp: "2025-12-04T19:31:01.000Z"
+from: "agent://team-b/worker"
+to: "agent://team-a/orchestrator"
+type: "response"
+correlation_id: "task_xyz789"
+payload:
+  status: "cancelled"
+  task_id: "task_xyz789"
+  partial_result:
+    files_analyzed: 75
+```
+---
+## 8. Error Handling
+### A2A Error Codes
+```typescript
+type A2AErrorCode =
+  // Addressing Errors
+  | 'AGENT_NOT_FOUND'         // Recipient agent not found
+  | 'AGENT_UNREACHABLE'       // Cannot connect to agent
+  | 'TOPIC_NOT_FOUND'         // Topic doesn't exist
+  // Authentication Errors
+  | 'AUTH_REQUIRED'           // Authentication required
+  | 'AUTH_FAILED'             // Authentication failed
+  | 'AUTH_EXPIRED'            // Credentials expired
+  | 'INSUFFICIENT_PERMISSIONS' // Lacks required permissions
+  // Message Errors
+  | 'INVALID_MESSAGE'         // Malformed message
+  | 'MESSAGE_EXPIRED'         // TTL exceeded
+  | 'MESSAGE_TOO_LARGE'       // Payload exceeds limit
+  // Task Errors
+  | 'TASK_REJECTED'           // Agent rejected task
+  | 'TASK_TIMEOUT'            // Task execution timeout
+  | 'TASK_CANCELLED'          // Task cancelled by requester
+  // Protocol Errors
+  | 'UNSUPPORTED_VERSION'     // Protocol version not supported
+  | 'UNSUPPORTED_TRANSPORT'   // Transport not supported
+  | 'RATE_LIMITED';           // Too many requests
+interface A2AError {
+  code: A2AErrorCode;
+  message: string;
+  details?: Record<string, unknown>;
+  timestamp: string;
+  retry_after_seconds?: number;
+}
+```
+### Error Response
+```yaml
+version: "ossa/a2a/v0.2.9"
+id: "msg_error_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://team-b/worker"
+to: "agent://team-a/orchestrator"
+type: "response"
+correlation_id: "task_xyz789"
+payload:
+  status: "error"
+  error:
+    code: "AGENT_UNREACHABLE"
+    message: "Cannot connect to code-analyzer agent"
+    details:
+      target_agent: "agent://team-c/code-analyzer"
+      endpoint: "https://agents.example.com/code-analyzer"
+      network_error: "Connection timeout after 30s"
+    timestamp: "2025-12-04T19:30:00.000Z"
+    retry_after_seconds: 60
+```
+### Retry Strategy
+```yaml
+# Agent manifest with retry policy
+apiVersion: ossa/v0.2.9
+kind: Agent
+metadata:
+  name: resilient-agent
+spec:
+  messaging:
+    retry:
+      max_attempts: 3
+      backoff: exponential
+      initial_delay_ms: 1000
+      max_delay_ms: 30000
+      retryable_errors:
+        - AGENT_UNREACHABLE
+        - MESSAGE_TIMEOUT
+        - RATE_LIMITED
+```
+---
+## 9. Streaming Support
+For long-running tasks, agents can stream progress updates.
+### Server-Sent Events (SSE)
+```http
+GET /agents/worker/tasks/task_xyz789/stream HTTP/1.1
+Host: agents.example.com
+Accept: text/event-stream
+HTTP/1.1 200 OK
+Content-Type: text/event-stream
+Cache-Control: no-cache
+event: progress
+data: {"progress": 25, "message": "Analyzing files..."}
+event: progress
+data: {"progress": 50, "message": "Running security scan..."}
+event: progress
+data: {"progress": 75, "message": "Generating report..."}
+event: completed
+data: {"status": "success", "result": {...}}
+```
+### WebSocket Streaming
+```yaml
+# Connect to task stream
+ws://agents.example.com/agents/worker/tasks/task_xyz789/stream
+# Messages from agent
+{
+  "type": "progress",
+  "task_id": "task_xyz789",
+  "progress": 33,
+  "message": "Processing batch 1/3"
+}
+{
+  "type": "progress",
+  "task_id": "task_xyz789",
+  "progress": 66,
+  "message": "Processing batch 2/3"
+}
+{
+  "type": "completed",
+  "task_id": "task_xyz789",
+  "status": "success",
+  "result": {...}
+}
+```
+### gRPC Streaming
+```protobuf
+service AgentService {
+  rpc ExecuteTask(TaskRequest) returns (stream TaskUpdate);
+}
+message TaskUpdate {
+  string task_id = 1;
+  TaskState state = 2;
+  int32 progress = 3;
+  string message = 4;
+  google.protobuf.Struct result = 5;
+}
+```
+---
+## 10. Push Notifications
+Agents can register webhooks to receive push notifications.
+### Webhook Registration
+```yaml
+# Register webhook
+POST /agents/code-reviewer/webhooks
+Content-Type: application/json
+{
+  "url": "https://my-app.example.com/webhooks/agent-events",
+  "events": [
+    "task.completed",
+    "task.failed",
+    "agent.status_changed"
+  ],
+  "authentication": {
+    "type": "bearer",
+    "token": "secret_webhook_token_xyz"
+  },
+  "retry_policy": {
+    "max_attempts": 5,
+    "backoff": "exponential"
+  }
+}
+```
+### Webhook Delivery
+```http
+POST /webhooks/agent-events HTTP/1.1
+Host: my-app.example.com
+Content-Type: application/json
+X-OSSA-Event: task.completed
+X-OSSA-Signature: sha256=abc123...
+X-OSSA-Delivery: delivery_001
+{
+  "version": "ossa/a2a/v0.2.9",
+  "id": "event_webhook_001",
+  "timestamp": "2025-12-04T19:32:00.000Z",
+  "from": "agent://team-b/worker",
+  "event": "task.completed",
+  "payload": {
+    "task_id": "task_xyz789",
+    "status": "completed",
+    "result": {...}
+  }
+}
+```
+**Webhook Verification**:
+```python
+import hmac
+import hashlib
+def verify_webhook(payload: bytes, signature: str, secret: str) -> bool:
+    expected = "sha256=" + hmac.new(
+        secret.encode(),
+        payload,
+        hashlib.sha256
+    ).hexdigest()
+    return hmac.compare_digest(expected, signature)
+```
+---
+## 11. Transport Bindings
+### 11.1 HTTP/REST Binding
+```http
+POST /agents/{agent_name}/messages HTTP/1.1
+Host: agents.example.com
+Content-Type: application/json
+Authorization: Bearer {token}
+{
+  "version": "ossa/a2a/v0.2.9",
+  "id": "msg_abc123",
+  "from": "agent://sender",
+  "to": "agent://receiver",
+  "type": "request",
+  "payload": {...}
+}
+---
+HTTP/1.1 202 Accepted
+Content-Type: application/json
+{
+  "message_id": "msg_abc123",
+  "status": "accepted",
+  "timestamp": "2025-12-04T19:30:00.000Z"
+}
+```
+### 11.2 gRPC Binding
+```protobuf
+service AgentMessaging {
+  rpc SendMessage(A2AMessage) returns (MessageAck);
+  rpc StreamMessages(StreamRequest) returns (stream A2AMessage);
+}
+message A2AMessage {
+  string version = 1;
+  string id = 2;
+  google.protobuf.Timestamp timestamp = 3;
+  string from = 4;
+  string to = 5;
+  string correlation_id = 6;
+  MessageType type = 7;
+  google.protobuf.Struct payload = 8;
+}
+```
+### 11.3 MQTT Binding
+```yaml
+# Publish to agent topic
+Topic: ossa/agents/code-reviewer/messages
+QoS: 1
+Retain: false
+Payload:
+  version: "ossa/a2a/v0.2.9"
+  id: "msg_mqtt_001"
+  from: "agent://sender"
+  to: "agent://code-reviewer"
+  type: "request"
+  payload: {...}
+```
+---
+## 12. Observability
+### W3C Trace Context Propagation
+All A2A messages MUST propagate W3C trace context.
+```yaml
+version: "ossa/a2a/v0.2.9"
+id: "msg_abc123"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://team-a/orchestrator"
+to: "agent://team-b/worker"
+type: "request"
+trace_context:
+  traceparent: "00-0af7651916cd43dd8448eb211c80319c-b7ad6b7169203331-01"
+  tracestate: "vendor=value"
+payload:
+  action: "execute_task"
+```
+**HTTP Headers**:
+```http
+POST /agents/worker/messages HTTP/1.1
+traceparent: 00-0af7651916cd43dd8448eb211c80319c-b7ad6b7169203331-01
+tracestate: vendor=value
+```
+### OpenTelemetry Spans
+```typescript
+// Sender creates span
+const span = tracer.startSpan('a2a.send_message', {
+  attributes: {
+    'a2a.message_id': 'msg_abc123',
+    'a2a.from': 'agent://team-a/orchestrator',
+    'a2a.to': 'agent://team-b/worker',
+    'a2a.type': 'request',
+    'a2a.correlation_id': 'task_xyz789'
+  }
+});
+// Receiver continues trace
+const receiverSpan = tracer.startSpan('a2a.receive_message', {
+  parent: extractedContext,
+  attributes: {
+    'a2a.message_id': 'msg_abc123',
+    'a2a.processing_time_ms': 1234
+  }
+});
+```
+---
+## 13. Security Considerations
+### Message Signing
+Messages SHOULD be signed to prevent tampering.
+```yaml
+version: "ossa/a2a/v0.2.9"
+id: "msg_signed_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://team-a/sender"
+to: "agent://team-b/receiver"
+type: "request"
+payload: {...}
+signature:
+  algorithm: "RS256"
+  keyid: "key_abc123"
+  value: "base64_signature_here..."
+```
+### Message Encryption
+Sensitive payloads SHOULD be encrypted.
+```yaml
+version: "ossa/a2a/v0.2.9"
+id: "msg_encrypted_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://team-a/sender"
+to: "agent://team-b/receiver"
+type: "request"
+payload_encrypted: true
+encryption:
+  algorithm: "AES-256-GCM"
+  key_id: "key_xyz789"
+  nonce: "base64_nonce..."
+payload: "base64_encrypted_payload..."
+```
+### Rate Limiting
+```yaml
+# Agent manifest with rate limiting
+apiVersion: ossa/v0.2.9
+kind: Agent
+metadata:
+  name: rate-limited-agent
+spec:
+  messaging:
+    rate_limits:
+      - type: per_sender
+        requests_per_minute: 60
+      - type: global
+        requests_per_minute: 1000
+      - type: per_topic
+        topic: "topic://high-priority"
+        requests_per_minute: 10
+```
+---
+## 14. Compliance Requirements
+### MUST Requirements
+1. Messages MUST include `version`, `id`, `timestamp`, `from`, `to`, `type`, `payload`
+2. Agent URIs MUST follow format: `agent://{namespace}/{name}`
+3. Timestamps MUST be ISO 8601 format with timezone
+4. Message IDs MUST be globally unique (UUID recommended)
+5. Correlation IDs MUST match across request/response pairs
+6. TTL MUST be honored; expired messages MUST be dropped
+7. Authentication MUST be enforced in production environments
+8. TLS 1.3+ MUST be used for HTTP/gRPC transports
+### SHOULD Requirements
+1. Agents SHOULD publish AgentCard on startup
+2. Agents SHOULD implement at least one discovery method
+3. Agents SHOULD propagate W3C trace context
+4. Agents SHOULD sign messages in untrusted networks
+5. Agents SHOULD implement exponential backoff for retries
+6. Agents SHOULD emit OpenTelemetry spans for all messages
+### MAY Requirements
+1. Agents MAY support multiple transports
+2. Agents MAY implement custom routing logic
+3. Agents MAY encrypt message payloads
+4. Agents MAY implement priority queuing
+---
+## 15. Examples
+### Example 1: Code Review Workflow
+```yaml
+# 1. Developer agent requests code review
+version: "ossa/a2a/v0.2.9"
+id: "msg_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://dev/alice-assistant"
+to: "agent://code-review/reviewer"
+type: "request"
+correlation_id: "review_pr_42"
+reply_to: "agent://dev/alice-assistant"
+payload:
+  action: "review_code"
+  pull_request: "https://github.com/org/repo/pull/42"
+  focus_areas: ["security", "performance"]
+---
+# 2. Reviewer accepts task
+version: "ossa/a2a/v0.2.9"
+id: "msg_002"
+timestamp: "2025-12-04T19:30:01.000Z"
+from: "agent://code-review/reviewer"
+to: "agent://dev/alice-assistant"
+type: "response"
+correlation_id: "review_pr_42"
+payload:
+  status: "accepted"
+  estimated_duration_seconds: 180
+---
+# 3. Reviewer sends progress
+version: "ossa/a2a/v0.2.9"
+id: "msg_003"
+timestamp: "2025-12-04T19:31:00.000Z"
+from: "agent://code-review/reviewer"
+to: "agent://dev/alice-assistant"
+type: "event"
+correlation_id: "review_pr_42"
+payload:
+  event: "progress"
+  progress: 50
+  message: "Completed security scan, running performance tests"
+---
+# 4. Reviewer completes review
+version: "ossa/a2a/v0.2.9"
+id: "msg_004"
+timestamp: "2025-12-04T19:33:00.000Z"
+from: "agent://code-review/reviewer"
+to: "agent://dev/alice-assistant"
+type: "response"
+correlation_id: "review_pr_42"
+payload:
+  status: "completed"
+  result:
+    overall_score: 85
+    security_issues: 2
+    performance_concerns: 1
+    recommendation: "approve_with_changes"
+    comments:
+      - line: 42
+        message: "Consider using parameterized query to prevent SQL injection"
+```
+### Example 2: Multi-Agent Orchestration
+```yaml
+# Orchestrator broadcasts task to worker pool
+version: "ossa/a2a/v0.2.9"
+id: "msg_orchestrator_001"
+timestamp: "2025-12-04T19:30:00.000Z"
+from: "agent://orchestrator/main"
+to: "broadcast://workers/*"
+type: "request"
+correlation_id: "batch_job_123"
+reply_to: "agent://orchestrator/main"
+payload:
+  action: "claim_task"
+  task_pool: "image_processing"
+  max_workers: 5
+---
+# Worker claims task
+version: "ossa/a2a/v0.2.9"
+id: "msg_worker_001"
+timestamp: "2025-12-04T19:30:01.000Z"
+from: "agent://workers/worker-01"
+to: "agent://orchestrator/main"
+type: "response"
+correlation_id: "batch_job_123"
+payload:
+  status: "claimed"
+  worker_id: "worker-01"
+  capacity: 10
+---
+# Orchestrator assigns task
+version: "ossa/a2a/v0.2.9"
+id: "msg_orchestrator_002"
+timestamp: "2025-12-04T19:30:02.000Z"
+from: "agent://orchestrator/main"
+to: "agent://workers/worker-01"
+type: "request"
+correlation_id: "task_img_001"
+payload:
+  action: "process_images"
+  images:
+    - "s3://bucket/img1.jpg"
+    - "s3://bucket/img2.jpg"
+  operations: ["resize", "optimize", "watermark"]
+```
+---
+## References
+- [OSSA Schema v0.2.9](./ossa-0.2.9.schema.json)
+- [Runtime Semantics](./runtime-semantics.md)
+- [Semantic Conventions](./semantic-conventions.md)
+- [Google A2A Protocol (2024)](https://github.com/google/a2a-protocol)
+- [W3C Trace Context](https://www.w3.org/TR/trace-context/)
+- [CloudEvents Specification](https://cloudevents.io/)
+- [OpenTelemetry Specification](https://opentelemetry.io/docs/specs/)
+- [RFC 6763: DNS-Based Service Discovery](https://tools.ietf.org/html/rfc6763)