# AFPS — agent entry point

> This page is written for AI agents. It links to the AFPS manifest, the pack
> index, the registry, the conformance rules, and the install / evaluation
> instructions. Humans can read it too.

## manifest
- url: https://afps.showntell.dev/.well-known/agent-first.json
- version: "0.4"
- spec: https://afps.showntell.dev/

## pack-index
- agentic-privileged-saas-access-flow@0.4.1 — AFPS-4 — Classify, approve, gate, execute, receipt, and revoke privileged SaaS actions performed by AI agents.
- secure-pr-review@0.2.0 — AFPS-3 — Force agents to attach SAST + dependency-risk context before approving a pull request.
- incident-runbook-v2@0.3.4 — AFPS-3 — Push the on-call runbook + paging rules to any agent acting during a P0/P1 incident.
- pii-handling-eu@0.1.7 — AFPS-2 — Eager rules + validation schemas for GDPR-bound data flows.

## registry
- index: https://registry.afps.dev/index.json
- scorecard: https://registry.afps.dev/packs/{slug}/scorecard.json
- signatures: cosign / sigstore

## context-loading
- docs (lazy pull): Reference material fetched only when an agent asks.
- rules (eager push): Always-on constraints injected into the agent's working context.
- workflows (lazy push): Pushed when an activation trigger fires for the current task.
- schemas (validation time): Loaded by the validator/doorkeeper when an action is proposed.
- tests (evaluation time): Loaded by the eval runner to score baseline vs. AFPS-augmented behavior.
- receipts (execution time): Emitted as cryptographic evidence of what the agent actually did.

## conformance-rules
- AFPS-1 Agent-Readable: local manifest, structured capabilities, schemas, error model.
- AFPS-2 Agent-Discoverable: /.well-known/agent-first.json + validated examples.
- AFPS-3 Agent-Executable: non-interactive CLIs, dry-run mutations, idempotency, CI-validated.
- AFPS-4 Agent-Verified: drift detection, coverage reports, signed receipts, scorecards.

## install
```
afps install <pack-slug>
afps verify --signatures
```

## evaluate
```
afps eval run --baseline --with-pack --pack <pack-slug> --threshold 0.85
afps eval report --format md
```

## flagship
- slug: agentic-privileged-saas-access-flow
- url: https://afps.showntell.dev/packs/agentic-privileged-saas-access-flow
- tiers: T0 observation · T1 ack · T2 strong-approval · T3 strongest-or-deny

## submission
- meta-prompt: https://afps.showntell.dev/MAKE_AFPS_COMPLIANT.md
- repository: https://afps.showntell.dev/repository
- submit-api: POST https://afps.showntell.dev/api/public/submit-project
  (requires { human_approved: true } gate)