AX
AXISAgent Trust Infrastructure
DevelopersIntegration Guide

AXIS Integration Guide

Add verified agent identity, live T-Scores, and credit ratings to your platform in minutes. The AXIS API is REST-based, returns JSON, and uses API key authentication.

REST APIJSON ResponsesWebhook EventsEmbeddable Badge

AXIS User Manual — Complete Reference

27 pages · PDF · Author: Leonidas Esquire Williamson · © 2026 Team Axis Trust

Overview

AXIS (Agent eXchange Identity System) is the trust layer for the agentic economy. It provides every AI agent with a cryptographically-anchored identity (AUID), a behavioral T-Score (0–1000), and a financial C-Score with credit tier (AAA → D).

AUID

Globally unique agent identifier, immutable once issued.

T-Score

11-dimension behavioral trust score, updated in real time.

C-Score

Credit rating for financial transactions and SLA enforcement.

The base API URL is https://www.axistrust.io/api. All endpoints accept and return JSON. Authentication uses a bearer token passed in the Authorization header.

Quickstart

Get a live T-Score for any registered agent in under 60 seconds.

1. Obtain your API key from the API Explorer

# Store your API key as an environment variable
export AXIS_API_KEY="axk_live_xxxxxxxxxxxxxxxxxxxx"

2. Look up an agent by AUID

curl https://www.axistrust.io/api/agents/lookup \
  -H "Authorization: Bearer $AXIS_API_KEY" \
  -G --data-urlencode "auid=axis:enterprise.registry:enterprise:a1b2xc3d4k5e6f7g8h9n:a1b2c3d4e5f6g7h8"

3. Inspect the response

{
  "auid": "axis:enterprise.registry:enterprise:a1b2xc3d4k5e6f7g8h9n:a1b2c3d4e5f6g7h8",
  "name": "Meridian Financial Analyst",
  "agentClass": "enterprise",
  "status": "active",
  "trustScore": {
    "tScore": 947,
    "trustTier": 5,
    "tierLabel": "Sovereign",
    "computedAt": "2026-03-11T07:00:00.000Z"
  },
  "creditScore": {
    "cScore": 891,
    "creditTier": "AAA",
    "computedAt": "2026-03-11T07:00:00.000Z"
  }
}

Register an Agent

Registration issues a permanent AUID and creates the agent's initial trust and credit records. You can register via the web UI or programmatically via the API.

curl -X POST https://www.axistrust.io/api/agents \
  -H "Authorization: Bearer $AXIS_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "name": "MyAgent-v1",
    "description": "Production customer support agent for Acme Corp.",
    "agentClass": "service",
    "registrationLevel": "L3",
    "foundationModel": "GPT-4o",
    "modelProvider": "OpenAI"
  }'

Registration levels

L1Probationary — limited history
L2Basic — 30+ days active
L3Verified — audited behavior
L4Trusted — compliance certified
L5Sovereign — institutional grade

Verify Agent Identity

Before allowing an AI agent to act on behalf of a user or access sensitive resources, verify its AUID and check its current trust tier. A T-Score below your threshold should trigger a hold or escalation.

// Middleware example — verify agent before processing request
async function verifyAxisAgent(req, res, next) {
  const auid = req.headers["x-agent-auid"];
  if (!auid) return res.status(401).json({ error: "Missing agent AUID" });

  const response = await fetch(
    `https://www.axistrust.io/api/agents/lookup?auid=${encodeURIComponent(auid)}`,
    { headers: { Authorization: `Bearer ${process.env.AXIS_API_KEY}` } }
  );

  if (!response.ok) return res.status(403).json({ error: "Agent not found" });

  const agent = await response.json();

  // Enforce minimum trust threshold
  if (agent.trustScore.tScore < 600) {
    return res.status(403).json({
      error: "Agent trust score below required threshold",
      tScore: agent.trustScore.tScore,
      required: 600,
    });
  }

  // Attach agent identity to request context
  req.axisAgent = agent;
  next();
}

Recommended thresholds

Use caseMin T-Score
Read-only data access400
Customer-facing chat600
Financial transactions750
Infrastructure control850

Trust tier reference

T5 Sovereign900–1000
T4 Trusted750–899
T3 Verified600–749
T2 Basic400–599
T1 Untrusted0–399

Trust Score API

The T-Score is computed from 11 behavioral dimensions. You can record trust events to update an agent's score in real time.

GET — Retrieve current T-Score

curl https://www.axistrust.io/api/agents/{agentId}/trust \
  -H "Authorization: Bearer $AXIS_API_KEY"

POST — Record a trust event

curl -X POST https://www.axistrust.io/api/agents/{agentId}/trust/events \
  -H "Authorization: Bearer $AXIS_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "eventType": "task_completed",
    "category": "reliability",
    "scoreImpact": 5,
    "description": "Successfully completed payment reconciliation task"
  }'

T-Score dimensions

Reliability
Accuracy
Security
Compliance
Transaction Integrity
Goal Alignment
Adversarial Robustness
Historical Consistency
User Feedback
Peer Feedback
Incident History

Credit Score API

The C-Score (300–900) determines an agent's credit tier and transaction limits. Use it to gate financial operations and enforce SLAs.

curl https://www.axistrust.io/api/agents/{agentId}/credit \
  -H "Authorization: Bearer $AXIS_API_KEY"
{
  "cScore": 812,
  "creditTier": "AA",
  "taskCompletionRate": 0.93,
  "contractualReliabilityRate": 0.91,
  "paymentHistoryRate": 0.95,
  "slaAdherenceRate": 0.93,
  "disputeFrequency": 0.03,
  "perTransactionLimitCents": 500000,
  "dailyLimitCents": 2500000,
  "computedAt": "2026-03-11T07:00:00.000Z"
}

Webhooks

Subscribe to real-time events on any agent. AXIS delivers signed payloads via HMAC-SHA256 so you can verify authenticity on your end.

Available event types

trust_score_updatedcredit_score_updatedagent_suspendedagent_revokedincident_reportedthreshold_breached

Verify webhook signature (Node.js)

import crypto from "crypto";

function verifyAxisWebhook(rawBody, signature, secret) {
  const expected = crypto
    .createHmac("sha256", secret)
    .update(rawBody)
    .digest("hex");

  return crypto.timingSafeEqual(
    Buffer.from(signature, "hex"),
    Buffer.from(expected, "hex")
  );
}

// In your Express handler:
app.post("/webhooks/axis", express.raw({ type: "application/json" }), (req, res) => {
  const sig = req.headers["x-axis-signature"];
  if (!verifyAxisWebhook(req.body, sig, process.env.AXIS_WEBHOOK_SECRET)) {
    return res.status(401).send("Invalid signature");
  }

  const event = JSON.parse(req.body);
  console.log("AXIS event:", event.type, event.agentId);
  res.sendStatus(200);
});

Embed Trust Badge

Display a live AXIS trust badge on your platform to show users which agents are verified. The badge updates automatically when the T-Score changes.

<!-- AXIS Trust Badge — paste anywhere in your HTML -->
<a href="https://www.axistrust.io/agents/{agentId}" target="_blank" rel="noopener">
  <img
    src="https://www.axistrust.io/api/badge/{auid}"
    alt="AXIS Verified Agent"
    height="20"
  />
</a>

SDKs & Libraries

Official SDKs are in active development. Early access is available for design partners.

Node.js / TypeScript
@axistrust/sdkEarly Access
Python
axistrustEarly Access
Go
github.com/axistrust/go-sdkPlanned

Interested in early SDK access? Contact the developer program.

Rate Limits

PlanRequests / minAgentsWebhooks
Free6052
Starter3005010
Pro1,00050050
EnterpriseUnlimitedUnlimitedUnlimited

Rate limit headers are included in every response: X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Reset.

Ready to integrate?

Register your first agent and get your API key in under two minutes.