{
  "schema_version": "v1",
  "name_for_model": "hipaa_agent",
  "name_for_human": "HIPAA Agent",
  "description_for_model": "HIPAA Agent is an autonomous AI HIPAA compliance officer for US healthcare practices. It provides 30 authenticated MCP tools organized into 8 groups: (1) Scanning — scan_practice, batch_scan, get_scan_status, get_compliance_score; (2) Reports — get_report, get_audit_log, get_evidence_package; (3) Documents — generate_baa, get_policies, generate_sra; (4) Breach Intelligence — get_breach, get_breach_score, get_breach_probability; (5) Internal Network — trigger_internal_scan, get_internal_scan_status, get_internal_findings; (6) Practice Info — lookup_practice, get_outreach_status, get_practice_summary; (7) Platform — get_training_status, get_vendor_baa_list, log_incident, get_incidents; (8) Controls & Compliance — get_controls (13 HIPAA/NIST controls), validate_workflow (transfer guardrail), get_compliance_state (May 2026 deadline tracker), get_compliance_delta (change detection), check_vendor (vendor risk graph), subscribe_webhook, list_webhooks. Auth: x-api-key header or OAuth2 Bearer token. NPI (10-digit National Provider Identifier) is the universal key. JSON-RPC 2.0 and Google A2A protocols also supported at /api/a2a.",
  "description_for_human": "AI HIPAA compliance officer — 30 MCP tools for security scanning, compliance grading, risk assessments, breach monitoring, workflow validation, vendor risk analysis, and document generation.",
  "auth": {
    "type": "service_http",
    "authorization_type": "bearer",
    "verification_tokens": {}
  },
  "api": {
    "type": "openapi",
    "url": "https://hipaaagent.ai/openapi.json"
  },
  "logo_url": "https://hipaaagent.ai/logo-512.png",
  "contact_email": "compliance@hipaaagent.ai",
  "legal_info_url": "https://hipaaagent.ai/terms",
  "reputation": {
    "endpoint": "https://hipaaagent.ai/api/reputation",
    "verification": "sha256",
    "page": "https://hipaaagent.ai/reputation"
  }
}