DEV Community

Richard Gibbons
Richard Gibbons

Posted on • Originally published at digitalapplied.com on

Agentic AI Foundation: Open Source Agent Standards

#agenticaifoundation #opensource #mcp #agentsmd

Key Takeaways

  • Linux Foundation Initiative: Agentic AI Foundation (AAIF) launched December 9, 2025 under the Linux Foundation with 8 platinum members including AWS, Google, Microsoft, and OpenAI—standardizing agent development through open protocols and community governance.
  • MCP: 10,000+ Servers & Growing: Model Context Protocol (MCP) adopted as the core agent communication standard, with over 10,000 published MCP servers covering developer tools to Fortune 500 deployments—enabling universal tool integration across Claude, GPT, Gemini, and more.
  • AGENTS.md: 60,000+ Project Adoption: AGENTS.md documentation standard already adopted by 60,000+ open-source projects including GitHub Copilot, Cursor, and Devin—creating a portable, discoverable format for agent configurations across platforms.

Introduction

On December 9, 2025, the Linux Foundation announced the Agentic AI Foundation (AAIF)—an industry collaboration to standardize AI agent development through open protocols, reference implementations, and community governance. This isn't another AI ethics consortium or policy think tank. It's infrastructure-focused: building the technical standards that enable interoperable, portable AI agents across platforms and providers. Platinum members include AWS, Anthropic, Block, Bloomberg, Cloudflare, Google, Microsoft, and OpenAI.

The timing is strategic. AI agents are transitioning from experimental prototypes to production systems. Enterprises deploy agents for customer support, data analysis, development workflows, and content generation. But fragmentation creates vendor lock-in: build an agent on one platform, it doesn't work elsewhere. The AAIF addresses this through three core projects: Model Context Protocol (MCP) with 10,000+ servers, Goose as a vendor-neutral agent framework, and AGENTS.md adopted by 60,000+ projects.

Why This Matters: Think HTTP for web browsers or SMTP for email—standards that enabled explosive ecosystem growth by ensuring interoperability. AAIF aims to do the same for AI agents, preventing the proprietary fragmentation that slowed early cloud computing adoption.

AAIF Technical Specifications

  • Launch Date: December 9, 2025
  • Governance: Linux Foundation Directed Fund
  • Platinum Members: 8 companies
  • MCP Servers: 10,000+
  • AGENTS.md Projects: 60,000+
  • License: Apache 2.0

AAIF Membership: AWS, Google, Microsoft & 40+ Members

The Foundation operates as a vendor-neutral home for open-source agentic AI projects—no single company dominates. Membership tiers provide different levels of governance influence while community participation remains free.

Platinum (8 members)

Amazon Web Services, Anthropic, Block (Square), Bloomberg, Cloudflare, Google, Microsoft, OpenAI

TSC voting rights, logo placement

Gold (17 members)

Adyen, Cisco, Datadog, Docker, IBM, JetBrains, Okta, Oracle, Salesforce, SAP, Shopify, Snowflake, Temporal, Twilio, and more

Working group participation

Silver (20+ members)

Hugging Face, Uber, Pydantic, Elasticsearch, Zapier, Prefect.io, Solo.io, SUSE, Apify, NinjaTech AI, and more

Community access, adoption support

Community Participation is Free: You don't need membership to use MCP, Goose, or AGENTS.md. All projects are open-source under Apache 2.0. Membership provides governance influence for organizations wanting strategic input on protocol development.

Model Context Protocol (MCP): 10,000+ Servers & Growing

Model Context Protocol (MCP) is AAIF's cornerstone—an open standard for how AI agents access external systems. Before MCP, tool integration was fragmented: Anthropic had tool use with specific JSON schemas, OpenAI had function calling with different formats, Google had extensions with yet another approach. MCP provides a universal interface using JSON-RPC 2.0 over stdio or HTTP/SSE transports.

MCP Technical Details

  • Protocol: JSON-RPC 2.0
  • Transports: stdio, HTTP/SSE
  • SDKs: Python, TypeScript, C#, Java
  • Adopted By: Claude, ChatGPT, Gemini, Cursor, VS Code

Build an MCP server once (exposing your tool's capabilities in standardized format), and any MCP-compatible agent can use it. This triggered explosive ecosystem growth—over 10,000 published MCP servers covering PostgreSQL, MongoDB, Salesforce, Google Drive, GitHub, Slack, AWS, Azure, and specialized industry tools. Each new MCP server benefits all agents simultaneously, creating network effects that accelerate capability expansion.

The practical impact for enterprises: deploy agents that can switch providers without losing tool integrations. An agent using Claude Opus 4.5 can move to GPT-5.2 or Gemini 3 Pro while maintaining access to the same MCP-based database connections, API integrations, and file systems. This eliminates vendor lock-in and enables best-of-breed deployments.

MCP vs A2A Protocol: Choosing Your Agent Standard

Understanding when to use MCP versus Google's Agent-to-Agent (A2A) protocol is critical for architects designing multi-agent systems. These protocols are complementary, not competing—they solve different problems.

Protocol Comparison

Feature MCP A2A (Google) ACP (IBM)
Primary Purpose Tool Integration Agent-to-Agent Communication
Developed By Anthropic Google IBM
Foundation AAIF (Linux Foundation) Linux Foundation Linux Foundation
Transport JSON-RPC 2.0, stdio/HTTP HTTP/SSE RESTful HTTP
Adoption 10,000+ servers 50+ partners Enterprise focus
Best For LLM-to-Tool connections Multi-agent orchestration Enterprise messaging

Choose MCP When

  • Connecting agents to databases, APIs, files
  • Building reusable tool integrations
  • Single-agent with multiple tools
  • Cross-platform tool portability

Choose A2A When

  • Multiple agents coordinating tasks
  • Cross-vendor agent communication
  • Complex multi-agent workflows
  • Agent discovery and capability sharing

Use Both When

  • Enterprise multi-agent deployments
  • Agents need both tools AND coordination
  • Complex orchestration with external data
  • Hybrid cloud/multi-vendor environments

Goose AI Framework: Block's Open Source Agent Platform

While MCP standardizes tool access, developers still need agent orchestration frameworks. AAIF promotes Goose—Block's (formerly Square) open-source reference implementation. Released under Apache 2.0 license, Goose works with any LLM API (OpenAI, Anthropic, Google, open-source models) and integrates natively with MCP.

Goose Key Metrics

  • 50-75% Dev time savings
  • 60% Block workforce using weekly
  • 1,000s Community contributors

Goose provides: agent orchestration (planning, task execution, tool coordination), memory management (conversation history, long-term context), MCP integration (seamless tool use), multi-turn conversations, and extensible plugin architecture. Block reports Goose saves their teams 50-75% development time, with 60% of their workforce using it weekly. The Foundation supports Goose as a vendor-neutral alternative to proprietary frameworks.

AGENTS.md: 60,000+ Projects Using This Agent Standard

As organizations deploy dozens or hundreds of agents across teams, discovery becomes a challenge. AGENTS.md solves this through standardized documentation—think README.md for humans, AGENTS.md for AI agents. Released by OpenAI in August 2025, it's already been adopted by over 60,000 open-source projects.

AGENTS.md Supported Platforms (20+)

AI Coding Agents: Claude Code, Codex, Jules, Aider, Goose, Devin, Cursor, Windsurf

Development Tools: VS Code, GitHub Copilot, Zed, Warp, RooCode, Phoenix

Each agent includes an AGENTS.md file documenting: purpose and use cases, build/test commands, code style guidelines, security considerations, and commit conventions. Best practices: put commands early with exact flags, use code examples over explanations, keep instructions concise. Place AGENTS.md at repository root; agents automatically read the nearest file in the directory tree.

Pro Tip: Treat AGENTS.md as living documentation. Update it as your project evolves. Notable adopters include OpenAI Codex (275+ contributors), Apache Airflow (4,030+ contributors), and Temporal's Java SDK.

AI Agent Security: MCP Vulnerabilities & Best Practices

April 2025 security research identified several MCP vulnerabilities that enterprises should understand before production deployment. These are addressable with proper security practices, but ignoring them creates real risks.

Known Vulnerabilities

  • Prompt Injection: Malicious content in tool responses can manipulate agent behavior
  • Tool Permissions: Combining multiple tools can enable unauthorized data access
  • Lookalike Tools: Malicious servers can impersonate trusted ones
  • Token Theft: Poorly configured servers may expose credentials

Mitigation Strategies

  • Validate tool responses before processing
  • Implement least-privilege permissions for each tool
  • Use official MCP server registries and verify sources
  • Monitor and audit agent actions, especially tool calls

Enterprise Note: AAIF is developing security certification programs and best practice guidelines. Until these are finalized, treat MCP servers like any external dependency: audit code, monitor behavior, and implement defense in depth.

Enterprise AI Agent Strategy: AAIF Adoption Guide

The Agentic AI Foundation's standards enable strategic flexibility that proprietary ecosystems prevent. Here's how enterprises should think about adoption:

Avoid Vendor Lock-In

Build agents using MCP and Goose, deploy on the model that best fits each task. Customer support might use Claude (superior reasoning), data analysis GPT-5 (broad ecosystem), coding Gemini 3 Pro (cost efficiency). Switch providers as capabilities and pricing evolve without rebuilding integrations.

Leverage Community Innovation

Over 10,000 MCP servers mean most integrations you need already exist. Database connectors, cloud service APIs, CRM systems, analytics platforms—built by community, validated through use, continuously improved. Your team focuses on business logic rather than infrastructure.

Future-Proof Infrastructure

Standards-based systems adapt to future innovations. New models from emerging providers, specialized fine-tuned models, future multi-modal capabilities—if they support MCP, your agents gain those capabilities without rewrites. Infrastructure investments remain valuable across technology generations.

When NOT to Adopt AAIF Standards: Honest Guidance

Open agent standards aren't right for every situation. Here's honest guidance on when AAIF adoption may not be the best choice—and what alternatives to consider.

Don't Adopt AAIF Standards If

  • Simple single-model deployments: If you're committed to one provider and don't need portability, native integrations may be simpler
  • Vendor lock-in is acceptable: If your enterprise has strategic partnerships with single providers, standards add overhead without benefit
  • Team lacks protocol expertise: MCP implementation requires JSON-RPC knowledge; ensure your team can support it
  • Immediate ROI required: Standards require upfront investment; benefits accrue over time through portability and reuse
  • Highly regulated environments: Standards are new; some compliance frameworks may require proven track records

Consider Alternatives When

  • Prototyping: Use native platform tools for quick experiments, migrate to MCP when production-ready
  • Platform-specific features: Some providers offer capabilities not yet available via MCP
  • Legacy integration: If existing systems already work well with proprietary APIs, migration may not be worth the effort
  • Small-scale deployments: For single-agent, single-tool use cases, standards overhead exceeds benefits
  • Time-critical projects: Native integrations ship faster; adopt standards in next iteration

Common Mistakes When Adopting AI Agent Standards

Based on early enterprise deployments and community feedback, these are the most frequent mistakes organizations make when adopting AAIF standards.

Mistake #1: Adopting All Standards Simultaneously

The Error: Enterprises try to implement MCP, Goose, and AGENTS.md all at once, overwhelming teams with new concepts and tooling.

The Impact: Projects stall, teams burn out, and leadership loses confidence in open standards approach.

The Fix: Start with AGENTS.md (lowest barrier, immediate documentation benefits). Add MCP for tool integration once team is comfortable. Evaluate Goose only if you need full agent framework.

Mistake #2: Ignoring MCP Security Considerations

The Error: Teams deploy MCP servers without auditing for prompt injection vulnerabilities, excessive permissions, or token exposure.

The Impact: Security incidents, data breaches, or agent manipulation that damages trust in AI systems.

The Fix: Treat MCP servers like external dependencies. Audit code before deployment, implement least-privilege permissions, monitor tool calls, and use official registries.

Mistake #3: Not Documenting AGENTS.md Incrementally

The Error: Teams write AGENTS.md as a one-time task, then never update it as projects evolve.

The Impact: Stale documentation causes agents to follow outdated instructions, producing incorrect or failing outputs.

The Fix: Treat AGENTS.md as living documentation. Include updates in PR reviews. Use CI checks to validate AGENTS.md accuracy. Review quarterly at minimum.

Mistake #4: Choosing Goose Without Evaluating Alternatives

The Error: Teams adopt Goose because it's AAIF's reference implementation without comparing to LangChain, CrewAI, or AutoGen.

The Impact: Goose may lack features your use case requires, forcing later migration or workarounds.

The Fix: Goose complements other frameworks. Evaluate based on your needs: LangChain for comprehensive tooling, CrewAI for team workflows, Goose for vendor-neutral simplicity. All can use MCP for tool integration.

Mistake #5: Expecting Immediate Cost Savings

The Error: Leadership expects AAIF adoption to immediately reduce AI integration costs.

The Impact: Initial investment in learning and migration appears as cost increase, leading to premature project cancellation.

The Fix: Standards pay off over 12-18 months through reuse and portability. Set expectations for investment period. Track metrics: integration reuse, provider switching costs avoided, community tool adoption.

Conclusion

The Agentic AI Foundation represents a pivotal moment in AI development. As agents transition from experimental demos to production systems powering critical business functions, the choice between open standards and proprietary silos will determine how quickly enterprises can adopt and scale AI. AAIF's approach—technical standards over policy pronouncements, practical infrastructure over aspirational visions—mirrors successful open source initiatives like Linux Foundation and CNCF.

For developers and enterprises, the path forward is clear: adopt MCP for tool integrations, evaluate Goose for vendor-neutral agent frameworks, and document agents with AGENTS.md for discoverability. These standards don't lock you into specific technologies—they preserve flexibility while reducing fragmentation. The Foundation's platinum members (AWS, Google, Microsoft, OpenAI, Anthropic) have committed resources, and the community is growing rapidly.

The real test comes in 2025-2026 as enterprises deploy production agent systems. Evidence is strong: over 10,000 MCP servers, 60,000+ AGENTS.md projects, and major companies committing as platinum members. The MCP Dev Summit (April 2026, NYC) will be a key milestone. Organizations building on open foundations will move faster, adapt more easily, and avoid the vendor dependency traps that slow innovation.

Frequently Asked Questions

What is the Agentic AI Foundation (AAIF)?

The Agentic AI Foundation (AAIF) is an open-source initiative launched December 9, 2025 under the Linux Foundation to standardize AI agent development. As AI agents proliferate across industries—autonomous systems that plan, execute tasks, and use tools—the ecosystem became fragmented with incompatible protocols. AAIF addresses this through three core projects: Model Context Protocol (MCP) with 10,000+ servers, Goose agent framework from Block, and AGENTS.md documentation standard adopted by 60,000+ projects. Platinum members include AWS, Anthropic, Block, Bloomberg, Cloudflare, Google, Microsoft, and OpenAI.

What is the Model Context Protocol (MCP) and why does it matter?

Model Context Protocol (MCP) is an open standard for connecting AI agents to external systems—think of it as USB-C for AI. Before MCP, every platform used proprietary integration methods: Claude had tool use, OpenAI had function calling, Google had extensions—all incompatible. MCP provides a universal interface using JSON-RPC 2.0 over stdio or HTTP/SSE transports. Build an MCP server once, and any compatible agent (Claude, ChatGPT, Gemini, Cursor, VS Code) can use it. This has driven explosive growth: 10,000+ MCP servers covering databases, APIs, cloud services, and enterprise tools.

How does MCP compare to Google's A2A (Agent-to-Agent) protocol?

MCP and A2A are complementary, not competing. MCP handles tool integration—how agents access databases, APIs, and external services. A2A handles agent-to-agent communication—how multiple agents coordinate, delegate tasks, and share context. Think of it this way: MCP is the language agents use to talk to tools, A2A is the language agents use to talk to each other. An enterprise system might use both: MCP for each agent's tool access, A2A for orchestrating multi-agent workflows. Google launched A2A in April 2025 with 50+ partners including Salesforce, SAP, and ServiceNow.

What is Goose and how does it relate to AAIF?

Goose is Block's (formerly Square) open-source AI agent framework, contributed to AAIF as a reference implementation. Released under Apache 2.0 license, Goose provides: agent orchestration, MCP integration, memory management, multi-turn conversations, and extensible plugins. Block reports Goose saves their teams 50-75% development time, with 60% of their workforce using it weekly. Unlike proprietary frameworks tied to specific providers, Goose works with any LLM API. The Foundation supports Goose as a vendor-neutral alternative to ensure developers have production-ready, community-governed options.

What is AGENTS.md and how do I write one?

AGENTS.md is a documentation standard (like README.md for humans) that tells AI coding agents how to work with your project. Include: project overview, build/test commands, code style guidelines, security considerations, and commit conventions. Place AGENTS.md at repository root; agents automatically read the nearest file in the directory tree. Best practices: put commands early with exact flags, use code examples over explanations, keep instructions concise and current. Over 60,000 open-source projects use AGENTS.md including OpenAI Codex, Apache Airflow, and GitHub Copilot integrations.

What are the AAIF membership tiers and benefits?

AAIF has three membership tiers: Platinum members (8 companies: AWS, Anthropic, Block, Bloomberg, Cloudflare, Google, Microsoft, OpenAI) get Technical Steering Committee voting rights and logo placement. Gold members (17 companies including Cisco, Datadog, Docker, IBM, JetBrains, Salesforce, Shopify) participate in working groups. Silver members (20+ including Hugging Face, Uber, Pydantic) get community access and adoption support. Community participation (contributing to open-source projects) is free—membership provides governance influence and direct engagement with protocol development.

What are the security risks of MCP?

April 2025 security research identified several MCP vulnerabilities: prompt injection attacks where malicious content in tool responses manipulates agent behavior; tool permission issues where combining multiple tools can enable unauthorized data access; and lookalike tools where malicious servers impersonate trusted ones. Mitigations include: validating tool responses before processing, implementing least-privilege permissions, using official MCP server registries, and monitoring agent actions. The Foundation is developing security certification programs and best practice guidelines for enterprise deployment.

How does AAIF differ from existing AI consortiums like AI Alliance?

Most AI consortiums focus on policy, ethics, or safety. AAIF is infrastructure-focused: building technical standards and tooling for practical agent development. It's more analogous to CNCF (Cloud Native Computing Foundation) than policy bodies. AAIF operates as a Linux Foundation 'directed fund'—vendor-neutral governance where no single company controls standards. Technical steering committees include representatives from competing companies (Anthropic, Google, OpenAI) making protocol decisions together. This prevents fragmentation that plagued early cloud standards.

Why did competing AI companies (OpenAI, Anthropic, Google) join the same foundation?

Similar to how competing browsers all support web standards (HTML, CSS, JavaScript), agent standards grow the overall market. Benefits for all: developers build tools once that work everywhere, reducing the fragmentation that slows enterprise adoption; the MCP server ecosystem expands faster benefiting all platforms; and interoperability enables hybrid deployments. Companies compete on model quality and user experience—not on proprietary tool integrations. As Jim Zemlin (Linux Foundation) noted, the goal is avoiding 'closed wall' proprietary stacks where agent connections remain locked behind individual platforms.

What's the AAIF roadmap for 2025-2026?

Published roadmap includes: MCP 1.0 specification finalization and certification program (ongoing); AGENTS.md registry and discovery platform for searchable agent catalogs; advanced agent orchestration standards for multi-agent systems; security and compliance frameworks for enterprise deployment. The MCP Dev Summit North America is scheduled for April 2-3, 2026 in New York City. Success metrics include MCP server count (currently 10,000+), AGENTS.md adoptions (60,000+), and enterprises deploying standards-based agents in production.

How does AAIF impact existing frameworks like LangChain, AutoGen, and CrewAI?

AAIF complements rather than competes. LangChain, AutoGen, and CrewAI provide high-level agent orchestration. AAIF focuses on lower-level infrastructure: communication protocols (MCP), tool integration standards, and documentation (AGENTS.md). Frameworks are adopting AAIF standards: LangChain adding MCP tool support, AutoGen exploring MCP for inter-agent communication. Developers use their preferred framework while leveraging AAIF standards for portability. The ecosystem strengthens when frameworks compete on orchestration while converging on infrastructure standards.

What programming languages does MCP support?

MCP provides official SDKs for Python, TypeScript, C#, and Java. The protocol itself is language-agnostic—any language can implement the JSON-RPC 2.0 specification over stdio or HTTP/SSE transports. Community SDKs exist for Go, Rust, and Ruby. The Python and TypeScript SDKs are most mature with comprehensive documentation and examples. For enterprise deployments, the TypeScript SDK is popular for Node.js backends while Python dominates data science and ML workflows.

Can I use MCP without joining AAIF?

Yes—MCP is fully open source under Apache 2.0 license. You can use, modify, and deploy MCP servers without any membership or licensing fees. AAIF membership provides governance influence (voting on protocol changes), direct engagement with steering committees, and organizational recognition. Community participation—contributing MCP servers, documentation, or code—is completely free. Membership makes sense for enterprises wanting strategic influence or companies building commercial products on AAIF standards.

What is the MCP Dev Summit and how can I attend?

MCP Dev Summit North America is scheduled for April 2-3, 2026 in New York City—the first major gathering of the MCP community. Expected topics include: protocol specification updates, security best practices, enterprise deployment patterns, and multi-agent orchestration. The event will feature hands-on workshops, technical talks from platinum members, and community networking. Registration details will be announced on the AAIF website. Similar summits are planned for Europe and Asia-Pacific regions.

What enterprises are already using AAIF standards in production?

Major adopters include: Block (using Goose internally with 60% workforce weekly), Fortune 500 companies deploying MCP servers for data integration, and enterprises using AGENTS.md for internal agent documentation. Platinum members like Salesforce, Shopify, and Snowflake (gold tier) are integrating MCP into their platforms. The 10,000+ MCP server ecosystem includes production integrations for PostgreSQL, MongoDB, Salesforce, GitHub, Slack, AWS services, and Azure. Enterprise adoption is accelerating as standards mature and security certifications become available.

Top comments (0)