CapiscIO Documentation¶
Technical documentation for CapiscIO security and tooling infrastructure for the A2A protocol.
Documentation by Product¶
📦 A2A Security Middleware¶
Runtime security for A2A agents. Message validation, signature verification, and protocol compliance.
Use when: Building production A2A agents that need protection from malformed messages, protocol violations, and SSRF attacks.
Quick Links: - Quick Start → - Installation Guide - Configuration Reference - Scoring System
🔧 CapiscIO CLI¶
Command-line validation for A2A agent cards. Three-dimensional scoring, JWS signature verification, live endpoint testing, and compliance checking.
Use when: Validating agent cards during development, CI/CD pipelines, or registry submissions.
Quick Links: - Getting Started - Validation Process - Scoring System - API Reference
When to Use Which Product?¶
-
A2A Security Middleware
Choose when you're building an A2A agent and need runtime protection:
- ✅ Validating incoming requests before processing
- ✅ Protecting against malformed messages
- ✅ Rate limiting and SSRF prevention
- ✅ Integrating security into your Python agent
Installation:
pip install capiscio-a2a-security -
CapiscIO CLI
Choose when you need to validate agent cards:
- ✅ Testing agent cards during development
- ✅ CI/CD validation in your pipeline
- ✅ Registry submission compliance checking
- ✅ Understanding scoring and trust metrics
Installation:
npm install -g capiscio-cli
Use Both Together
Most production A2A agents benefit from both tools:
- capiscio-cli validates your agent card during development
- A2A Security protects your agent at runtime
Resources¶
Need Help?¶
- Found a bug? Open an issue on the relevant repository (see product documentation)
- General questions? Check the CapiscIO website