Trust signals for AI agents: an open agent-readiness standard and developer tool guide. Read-only.
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Trust signals for AI agents: an open agent-readiness standard and developer tool guide. Read-only.