ThirdKeyAI/SchemaPin

The SchemaPin protocol for cryptographically signing and verifying AI agent tool schemas to prevent supply-chain attacks.

43
/ 100
Emerging

Uses ECDSA P-256 signatures with DNS-anchored trust discovery via `.well-known/schemapin.json` (RFC 8615) and Trust-On-First-Use key pinning to prevent substitution attacks. Supports skill folder signing for AgentSkills and offline verification through trust bundles. Available as SDKs across Python, JavaScript, Go, and Rust with pluggable resolvers for flexible verification workflows.

No Package No Dependents
Maintenance 13 / 25
Adoption 5 / 25
Maturity 9 / 25
Community 16 / 25

How are scores calculated?

Stars

13

Forks

6

Language

Python

License

MIT

Category

agent-trust-verification

Last pushed

Mar 09, 2026

Commits (30d)

0

GitHub
Agent Trust Verification · 56 servers

Get this data via API

curl "https://pt-edge.onrender.com/api/v1/quality/mcp/ThirdKeyAI/SchemaPin"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

Higher-rated alternatives

awslabs/mcp-server-for-oscal

OSCAL tools for AI agents

60

VibeTensor/attestix

Attestix - Attestation Infrastructure for AI Agents. DID-based agent identity, W3C Verifiable...

54

agentralabs/agentic-identity

Cryptographic agent identity with Ed25519 anchors, signed action receipts, and scoped trust...

50

fiddlecube/compliant-llm

Build Secure and Compliant AI agents and MCP Servers. YC W23

46

agntcy/identity-service

AGNTCY Identity Service serves as the central hub for managing and verifying digital identities...

44

Explore MCP Servers

All categories Trending MCP Server directory Insights