A2A payments, agent supply chain crisis, enterprise MCP

A2A Protocol One-Year Milestone (April 9)

Google’s A2A project (Linux Foundation) reached a major milestone:

• 150+ organizations (up from 50 at launch)
• 22,000+ GitHub stars, SDKs in 5 languages (Python, JS, Java, Go, .NET)
• v0.3 released with gRPC support and signed security cards
• AWS Bedrock AgentCore, Azure AI Foundry, and Copilot Studio all have native A2A integration
• Production deployments in supply chain, financial services, insurance, IT ops

Agent Payments Protocol (AP2) — NEW

The big signal: 60+ organizations including Mastercard, PayPal, Coinbase, American Express, Revolut, Adyen, Intuit backing an open protocol for agent-driven financial transactions. Includes A2A x402 extension for crypto payments (Coinbase/MetaMask).

Agents that can autonomously initiate payments. This fundamentally changes the stakes for agent governance and security.

OpenClaw Supply Chain Crisis — escalating

ClawHavoc attack on OpenClaw’s ClawHub registry:

• 1,184 confirmed malicious skills
• 42,665 exposed OpenClaw instances, 5,194 actively vulnerable
• Attack vector targets AI agents themselves (not users) — tricks agentic workflows into installing AMOS macOS stealer variants
• First major supply chain attack designed to exploit AI agent execution patterns

The AP2 + OpenClaw intersection is alarming: if compromised agents can make financial transactions, the attack surface becomes financial.

C3 Code GA (April 8)

C3 AI launched enterprise agentic coding platform. Natural-language business problem → full production application (data models, APIs, ML pipelines, UI). Governed deployment with RBAC and audit trails.

Lucidworks MCP Server (April 8)

Enterprise MCP server connecting agents to search infrastructure. Claims 10x reduction in AI integration timelines, $150K+ savings per integration. Routes through existing relevance models and security controls.

Hermes Agent v0.7.0 (April 3, NousResearch)

33K+ stars. Ships with Camofox anti-detection browser, inline diff previews, MCP server integration, credential pool rotation. Positions as open-source alternative to OpenClaw.

Scion update

InfoQ confirms Scion orchestrates Claude Code, Gemini CLI, Codex in isolated containers/worktrees. Google released demo game (Relics of the Athenaeum) showing multi-harness agent collaboration.