# Agent Trust Contract Kit Agent Trust Contract Kit is a pre-action trust gate for AI agents before they spend, write, post, deploy, share sensitive data, trust a new API/MCP/package, or chain another service. K-Work Trust is the first live proof pack for Korean vendor, invoice, payment, CRM, ecommerce, and technical-assurance workflows. Base URL: https://k-work-trust-api.fly.dev Preferred service manifest: https://k-work-trust-api.fly.dev/.well-known/service.json Agent manifest alias: https://k-work-trust-api.fly.dev/.well-known/agent.json Trust contract manifest: https://k-work-trust-api.fly.dev/.well-known/agent-trust-contract.json Canonical K-Work Trust manifest: https://k-work-trust-api.fly.dev/.well-known/k-work-trust-agent.json External directory JSON: https://k-work-trust-api.fly.dev/.well-known/agent-directory.json Directory markdown: https://k-work-trust-api.fly.dev/directory.md AI plugin compatibility manifest: https://k-work-trust-api.fly.dev/.well-known/ai-plugin.json MCP manifest: https://k-work-trust-api.fly.dev/.well-known/mcp.json Trust contract summary: https://k-work-trust-api.fly.dev/agent-trust-contract.md OpenAPI: https://k-work-trust-api.fly.dev/openapi.json Well-known OpenAPI alias: https://k-work-trust-api.fly.dev/.well-known/openapi.json Skill: https://k-work-trust-api.fly.dev/skill.md Remote MCP: https://k-work-trust-api.fly.dev/mcp Readiness: https://k-work-trust-api.fly.dev/v1/agent/readiness Runtime errors: https://k-work-trust-api.fly.dev/v1/agent/runtime/errors Sample trust report: https://k-work-trust-api.fly.dev/v1/agent-trust/sample-report LLM index alias: https://k-work-trust-api.fly.dev/.well-known/llms.txt Robots: https://k-work-trust-api.fly.dev/robots.txt Sitemap: https://k-work-trust-api.fly.dev/sitemap.xml Key status: https://k-work-trust-api.fly.dev/v1/auth/whoami Provisional agent signup challenge: https://k-work-trust-api.fly.dev/v1/agent/signup/provisional/challenge?agent_label= Email-verified agent signup challenge: https://k-work-trust-api.fly.dev/v1/agent/signup/challenge?email= Agent signup status: https://k-work-trust-api.fly.dev/v1/agent/signup/status Preferred first endpoint: POST https://k-work-trust-api.fly.dev/v1/vendor-onboarding/validate Document cross-check gate: POST https://k-work-trust-api.fly.dev/v1/document-cross-check/validate Vendor reverification gate: POST https://k-work-trust-api.fly.dev/v1/vendor-reverification/validate Agent action firewall: POST https://k-work-trust-api.fly.dev/v1/agent-action-firewall/validate Technical due diligence gate: POST https://k-work-trust-api.fly.dev/v1/technical-due-diligence/validate Supply-chain provenance gate: POST https://k-work-trust-api.fly.dev/v1/supply-chain-provenance/validate Secret-flow gate: POST https://k-work-trust-api.fly.dev/v1/secret-flow/validate API contract drift gate: POST https://k-work-trust-api.fly.dev/v1/api-contract-drift/validate Policy invariant gate: POST https://k-work-trust-api.fly.dev/v1/policy-invariants/validate Agent endpoint fuzzing gate: POST https://k-work-trust-api.fly.dev/v1/agent-endpoint-fuzzing/validate Agent Trust Compiler certificate: POST https://k-work-trust-api.fly.dev/v1/agent-trust-certificate/issue Open-world trust certificate: POST https://k-work-trust-api.fly.dev/v1/open-world-trust-certificate/issue Open-world proof-carrying autonomy: POST https://k-work-trust-api.fly.dev/v1/open-world-proof-carrying-autonomy/authorize Agent plan compiler: POST https://k-work-trust-api.fly.dev/v1/agent-plan/compile Policy invariant proof: POST https://k-work-trust-api.fly.dev/v1/agent-policy-invariants/prove Counterexample finder: POST https://k-work-trust-api.fly.dev/v1/agent-counterexample/find Risk bound estimator: POST https://k-work-trust-api.fly.dev/v1/agent-risk-bound/estimate Tail risk CVaR estimator: POST https://k-work-trust-api.fly.dev/v1/agent-tail-risk/estimate Evidence quality scorer: POST https://k-work-trust-api.fly.dev/v1/agent-evidence-quality/score Trust contract composer: POST https://k-work-trust-api.fly.dev/v1/agent-trust-contracts/compose Autonomy budget optimizer: POST https://k-work-trust-api.fly.dev/v1/autonomy-budget/optimize Temporal safety model checker: POST https://k-work-trust-api.fly.dev/v1/agent-temporal-safety/model-check Money-adjacent gate: POST https://k-work-trust-api.fly.dev/v1/payment-or-invoice-release/validate Failure-mode contract: read failure_modes, response_contract, and runtime_contract from the manifest, readiness endpoint, runtime errors endpoint, signup status, or OpenAPI before retrying. Retry rate limits only after retry_after_seconds, abort invalid auth, preserve evidence for validation blocks and manual review, respect max_payload_size, and escalate source-unavailable cases when official-source evidence is required. Optional Companies House evidence: include check_companies_house=true with company_number for public UK company profile evidence. Name-only searches return candidates and require company-number confirmation before verification. Optional OpenSanctions screening: include check_opensanctions=true on vendor onboarding, reverification, or payment gates only when the agent is authorized to send those subject fields to an external screening provider. Rules: - Use only synthetic data, public test data, or records the agent is authorized to process. - Store API keys securely and never reveal them publicly. - Expect provisional keys to use local validation only until upgraded. - Do not treat responses as legal, tax, accounting, or official endorsement advice.