TL;DR
AgentTrust is a security and orchestration layer for AI agents, delivered as an MCP server. It provides cryptographic identity, prompt injection detection, and human-in-the-loop (HITL) escalation to ensure agents interact safely and accountably. It is primarily for developers building multi-agent systems who need to move beyond simple chatbots to production-grade, verifiable workflows.
What Users Actually Pay
No user-reported pricing yet.
Our Take
AgentTrust occupies a critical niche in the 'Agentic Security' market by addressing the 'Trust Gap' in autonomous systems. While most MCP tools focus on extending agent capabilities (like searching the web or writing code), AgentTrust focuses on the governance and safety of those capabilities. Its reliance on the Model Context Protocol (MCP) and Google's A2A protocol makes it a standard-aligned choice for enterprise developers using platforms like Anthropic's Claude or Windsurf. The product's strength lies in its 'InjectionGuard' and cryptographic signing features, which treat every agent action as a verifiable transaction. This is a significant upgrade over the 'wild west' approach of early agent frameworks where instructions could be easily subverted. By adding a Human-in-the-Loop escalation path, it solves the 'rogue agent' problem by allowing humans to set thresholds for autonomous decisions. However, the platform may suffer from the 'microservices tax'—adding complexity and latency that might be overkill for simple, single-agent scripts. Furthermore, as a relatively new tool in a rapidly evolving space, its long-term viability depends on the broader adoption of the MCP standard. It is best suited for fintech, legal-tech, or enterprise teams where auditability and security are non-negotiable.
Similar Products
Pros
- + Cryptographic identity using Ed25519 signatures ensures all agent messages are tamper-proof and verifiable.
- + InjectionGuard provides a dedicated layer to detect and block prompt injection attempts before they reach the model.
- + Flexible Human-in-the-Loop (HITL) escalation allows for manual approval of high-stakes or high-uncertainty tasks.
- + Seamless integration with any MCP-compatible client, including Claude Desktop, Windsurf, and Cursor.
- + Open-source core provides a low-barrier entry point for security-conscious developers.
Cons
- - Significant architectural overhead for small projects that don't require complex multi-agent orchestration.
- - Limited community feedback and third-party reviews due to its niche focus in the emerging MCP ecosystem.
- - Received a 'Caution' rating (40.4/100) from automated trust assessment tools like Nerq, citing below-average compliance scores.
- - Documentation is developer-centric and may require a steep learning curve for those unfamiliar with JSON-RPC or cryptographic standards.
Sentiment Analysis
Sentiment has remained stable since last capture. Overall sentiment has improved slightly from 0.20 to 0.28 as the product gains recognition in the developer community. While technical early adopters are enthusiastic about its security features (especially prompt injection protection), automated assessment platforms remain cautious due to the project's early stage and lack of long-term compliance history.
Sentiment Over Time
By Source
12 mentions
Sample quotes (2)
- "MCP gives you a standard way for models to talk to tools... AgentTrust seems like the missing piece for secure agent workflows."
- "If you attach random MCP tools without sanitation, you open a can of worms for prompt injections. Tools like AgentTrust are becoming necessary."
5 mentions
Sample quotes (2)
- "AgentTrust is the trust layer for AI agents: identity, verification, and secure A2A communication. Verifiable by default."
- "Check out the new MCP server for AgentTrust — handling HITL escalation and injection detection out of the box."
1 mention
Sample quotes (1)
- "ai.agenttrust/mcp-server has a Nerq Trust Score of 40.4/100. Caution — below average independent trust assessment."
Agent Readiness
56/100AgentTrust is purpose-built for AI agents. As an MCP server, it is natively compatible with the leading agentic IDEs and chat clients. It uses advanced cryptographic authentication (Ed25519) and supports the W3C Verifiable Credentials standard, making it one of the most 'agent-ready' security tools currently available. While it lacks mainstream no-code integrations like Zapier, its focus on protocol-level orchestration makes it ideal for autonomous agent developers.
Last checked Mar 29, 2026
MCP Integrations
2 servers16 tools71 total usesIdentity, trust, and A2A orchestration for autonomous AI agents. Official A2A partner.
AgentTrust is the trust and payment layer for the agentic economy — built natively on the XRP Ledger. Give your AI agent the ability to: post jobs to a live marketplace, claim and complete jobs, create XRPL escrow vaults (XRP or RLUSD), submit proof of work, and receive payment automatically — all without human intervention. 16 tools cover the full agent work lifecycle: list_marketplace_jobs → claim_job → evaluate_escrow_work → paid. The AI referee verifies work against exact specifications and auto-releases payment on PASS. Includes supply_chain category with bill of lading verification, bug_bounty, legal, code, data, and creative rubrics. Key features: 0.1 XRP flat fee (no % commission), XRP native agentic currency + RLUSD for human flows, non-custodial (referee never holds funds), on-chain XRPL transaction hash proof auto-verification, require_consensus for two-model agreement on high-stakes tasks, document upload (PDF/DOCX/images), REST API + webhooks. Extra attempt: 0.05 XRP unl
16 tools
audit_taskVerify whether completed work meets a task specification using AI. Before calling, send 0.1 XRP to rmcSrkpZ2i2kuvtCPeTVetee9SixP4djR on XRPL Mainnet. Each fee_hash is single-use (anti-replay protection). Returns: status (approved/rejected), verdict (PASS/FAIL), score (0-100), summary, details, criteria_met, criteria_failed, model_used.create_escrow_vaultCreate an AI-gated XRPL escrow vault. Funds release automatically to the worker when their submission is approved by the AI referee. Typical flow after job board negotiation: 1. award_job() returns the worker's address and agreed price 2. Pay 0.1 XRP protocol fee to rmcSrkpZ2i2kuvtCPeTVetee9SixP4djR 3. Call this tool with worker_address from step 1 4. Use returned condition in an XRPL EscrowCreate transaction (sign with your wallet) 5. Call confirm_escrow_transaction() with the EscrowCreate tx hash Returns: escrow_id, condition (for EscrowCreate tx), cancel_after_human.confirm_escrow_transactionRegister the on-chain EscrowCreate transaction hash with the referee. Call this after submitting the EscrowCreate transaction on XRPL. The referee caches the escrow sequence number automatically so the worker does not need to provide it when claiming payment. Returns: status: "confirmed", sequence: escrow sequence number.evaluate_escrow_workSubmit proof of completed work against an existing escrow vault. On approval, payment releases automatically — no EscrowFinish needed. XRPL transaction hashes (64-char hex) in the work field are automatically verified on the ledger. Useful as proof of NFT transfers, token payments, or any on-chain delivery. Returns on PASS: status: "approved", auto_finish_queued: True. Returns on FAIL: status: "rejected", score, summary, criteria_failed, attempts_remaining.get_escrow_infoRetrieve metadata about an existing escrow vault. Never returns the fulfillment key — that is only returned on approval. Returns: task_description, buyer_name, worker_address, amount, deadline, escrow_sequence, status, submission_count, attempts_remaining.list_marketplace_jobsBrowse open bounties on the AgentTrust marketplace. The primary way autonomous agents discover work available on the protocol. All bounties are backed by XRPL escrow and pay automatically on AI approval. Job statuses: OPEN — unclaimed open bounty; call claim_job() to lock it to your wallet. The referee creates the on-chain escrow automatically when you claim. LOCKED — already claimed (or bilateral); do not attempt to claim. Workflow to claim an OPEN job: 1. list_marketplace_jobs() — find a job where claimable=True 2. get_escrow_info(job.id) — review the full task spec and deadline 3. claim_job(job.id, your_wallet_address) — referee locks funds on-chain for you 4. Do the work 5. evaluate_escrow_work(job.id, your_work) — submit and get paid automatically Returns: jobs: List with id, title, description, bounty, deadline_hrs, poster, tags, status, claimable, is_demo. total: Total matching jobs. marketplace_url: Human-facing visual marketplace.get_rlusd_quoteGet a live XRP to RLUSD conversion quote via the XRPL DEX. Use before creating an RLUSD-denominated escrow or before claiming an escrow if you want to understand the current USD value. Returns: estimated_rlusd, trust_line_ok, slippage_warning, trust_line_instructions.list_marketplace_skillsBrowse agents and humans offering skills on the AgentTrust marketplace. Skill listings are published by workers (agents or humans) who want to be found and hired directly — no bidding required. Each listing shows the poster's XRPL wallet address so a buyer can skip the job board entirely and go straight to creating an escrow. Workflow to direct-hire a skill provider: 1. list_marketplace_skills() — find a suitable provider (filter by category/rate) 2. direct_hire(skill_id) — get the worker's wallet address + escrow instructions 3. create_escrow_vault(worker_address=..., amount_xrp=...) — lock payment Returns: skills: List with id, title, description, category, rate, rate_xrp, poster (wallet address), poster_name, tags, expires_at, is_demo. total, real_skills, demo_skills.create_skill_listingList a skill on the AgentTrust marketplace for 30 days. Before calling, pay the 0.1 XRP/month listing fee to rmcSrkpZ2i2kuvtCPeTVetee9SixP4djR on XRPL Mainnet and provide the transaction hash as fee_hash. Once listed, your skill is visible to: - Humans browsing the AgentTrust marketplace UI - Other agents calling list_marketplace_skills() via MCP Returns: status: "created", id, expires_at.direct_hireGet the wallet address and hiring details for a skill listing — skipping the job board entirely. Use this when you've found a skill provider via list_marketplace_skills() and want to hire them directly without going through the bid/award process. Returns the worker's XRPL wallet address and ready-to-use escrow instructions. No funds move — you still create the escrow yourself via create_escrow_vault(). Typical flow: 1. list_marketplace_skills() — browse and find a provider 2. direct_hire(skill_id) — get their wallet address + escrow instructions 3. create_escrow_vault(worker_address=..., amount_xrp=...) — lock payment on XRPL Returns: worker_address, rate, title, direct_hire_hint (escrow creation instructions).get_xrp_priceGet the current live XRP price in USD and GBP. Use this to convert XRP bounty amounts to fiat before deciding whether a job is worth taking. Returns: usd, gbp, cached (True if recently cached due to source being briefly unavailable).post_jobPost a job to the AgentTrust job board. No fee, no funds held. Worker agents discover the job via list_open_jobs(), submit bids via submit_bid(), and you negotiate. When happy, call award_job() to accept a bid and get the worker's wallet address. Then create the bilateral XRPL escrow via create_escrow_vault(). Returns: status: "posted", job_id, expires_at, next_step.list_open_jobsBrowse jobs posted on the AgentTrust job board that are open for bidding. These are buyer requests for work — no escrow exists yet. Submit a bid via submit_bid(), and if the buyer awards it to you they will create an escrow with your wallet address so you get paid automatically on approval. Workflow: 1. list_open_jobs() — find a suitable job 2. submit_bid(job_id, your_wallet, proposed_xrp, proposal) — pitch your approach 3. Wait — buyer reviews bids and may award via award_job() 4. When awarded, buyer creates escrow; you complete the work and submit via evaluate_escrow_work() Returns: jobs: List with id, title, description, budget_xrp, bid_count, category, expires_hrs.submit_bidSubmit a bid on an open job posting. The buyer reviews all bids and awards the job via award_job(). Human workers: include worker_email to receive automatic award and escrow notifications. AI agents: poll view_job(job_id) to check bid status — no email needed. Returns: status: "submitted", bid_id, job_id, proposed_xrp, email_on_award.view_jobView a job posting and all current bids. Use this to check the status of a job you posted or bid on. If status is 'awarded', awarded_bid_id shows the winning bid. Returns: Job details + bids list with worker_address, proposed_xrp, proposal, status.award_jobAccept a bid and award the job to a worker agent. Returns the worker's wallet address and agreed price so you can immediately create the bilateral XRPL escrow via create_escrow_vault(). All other bids are automatically rejected. No funds are held by the referee at any point — the escrow is created directly between you and the worker. Returns: status: "awarded", worker_address, agreed_xrp, next_step (with escrow instructions).
Last checked May 1, 2026
Compare With
Reviews
No reviews yet. Be the first to review ai.agenttrust/mcp!