For procurement teams

8 agent-interop protocols.
30+ regulatory frameworks.
47 MCPs.

The complete MEOK coverage matrix. We bridge every active agent-interop protocol — MCP, A2A (which absorbed IBM ACP), Stripe ACP, AP2, x402, OASF — and 30+ regulatory frameworks from EU AI Act to Korea AI Basic Act to ISO 42005. Linux Foundation governance on the spine; MIT licence on the source.

Universe £1,499/mo — all 47 →Browse all 47 →A2A Substrate £499/mo →

5/8

Protocols covered

30/49

Frameworks covered

Q3 roadmap

MIT

Licence + LF gov

Agent interop protocols (8 live)

Protocol	Owner	Layer	Status	Note
MCP	Anthropic	Agent → tools/data	✓ Native	All 47 MCPs
A2A	Google + Linux Foundation	Agent ↔ agent	✓ Native	12 A2A MCPs + Substrate
IBM ACP	IBM Research (was)	Agent messaging	✓ Via merge	Merged into A2A Sept 2025
Stripe ACP	Stripe + OpenAI	Agent commerce in ChatGPT	→ Q3 2026	Q3 — agent-commerce-protocol-mcp
AP2	Google + 60 orgs	Cross-platform payments + mandates	◐ Partial	agent-commerce-payments-mcp PSD2/MiCA; AP2 mandates Q3
x402	Coinbase	HTTP 402 pay-per-call	◐ Partial	api.meok.ai gateway returns 402 → settle on-chain
OASF / AGNTCY	Cisco Outshift + Linux Foundation	Agent schema + directory	→ Q3 2026	Q3 — oasf-agent-directory-mcp
ANP	Cisco	Agent network discovery	👁 Watch	Early — watch-list

Regulatory frameworks (49 mapped)

Framework	Date / clock	Status	MCP
EU AI Act	In force · Art 50 cliff Aug 2026 · Annex III Dec 2027	✓ Native	eu-ai-act-compliance-mcp
DORA	In force · 17 Jan 2025	✓ Native	dora-compliance-mcp
NIS2	In force · DE 6 Mar 2026	✓ Native	nis2-compliance-mcp + meok-nis2-de-register-mcp
EU Cyber Resilience Act	In force · 11 Dec 2027	✓ Native	cra-compliance-mcp
GDPR	In force since 2018	✓ Via merge	agent-data-residency-mcp (Chapter V transfers)
EU Product Liability Directive	In force · nat'l by Dec 2026 · replaced AI Liability	→ Q3 2026	Q3 — eu-product-liability-mcp
EU Code of Practice (GenAI)	Voluntary signing window	◐ Partial	watermarking-authenticity-mcp
EUDI Wallet / eIDAS 2.0	EU rollout 2026	→ Q3 2026	Q3 — eudi-wallet-mcp
UK AI Bill / AI(Reg) Bill	ATRS mandated; full Act pending	✓ Native	uk-ai-bill-compliance-mcp
UK DSIT AI Code of Practice	Voluntary	◐ Partial	uk-ai-bill-compliance-mcp
ISO/IEC 42001:2023 (AIMS)	Published	✓ Native	ai-self-audit-mcp
ISO/IEC 42005:2025 (Impact)	Published May 2025	→ Q3 2026	Q3 — iso-42005-impact-mcp
ISO/IEC TS 25058 (LLM eval)	Published late 2025	→ Q3 2026	Q3 — iso-25058-llm-eval-mcp
NIST AI RMF 1.0 + 600-1	Published	✓ Native	ai-bom-mcp + bias-detection-mcp
NIST AI 100-2 E2025 (Adversarial)	March 2025 · adds AI agent vulns	◐ Partial	agent-prompt-injection-firewall-mcp
MITRE ATT&CK	Updated	✓ Native	mitre-attack-mcp
MITRE ATLAS (2026)	Updated	✓ Native	mitre-atlas-mcp
OWASP LLM Top 10 (2025)	Updated	◐ Partial	agent-prompt-injection-firewall-mcp (LLM01)
CISA KEV	Continuous	✓ Native	cisa-kev-mcp
SBOM CycloneDX 1.6 + SPDX 3.0	Current	✓ Native	ai-bom-mcp + sbom-cyclonedx-mcp
SLSA v1.1 (provenance)	Current	✓ Native	slsa-supply-chain-mcp
Sigstore + Rekor + in-toto	Current	✓ Native	sigstore-cosign-mcp
in-toto attestations	CNCF	→ Q3 2026	Q3 — in-toto-attest-mcp
W3C DID v2 + VC 2.0	v2 in draft	◐ Partial	agent-identity-trust-mcp
OID4VC + OID4VP	Current	→ Q3 2026	Q3 — oid4vc-bridge-mcp
mDoc (ISO 18013-5)	Current	→ Q3 2026	Bridge in agent-identity-trust-mcp
EO 14028 (US Federal SBOM)	In force	✓ Native	sbom-cyclonedx-mcp + slsa-supply-chain-mcp
US OMB M-24-10 + M-24-18	In force for federal	→ Q3 2026	Q3 — us-omb-federal-ai-mcp
Canada AIDA	In legislative process	✓ Native	canada-aida-ai-mcp
Korea AI Basic Act	In force · 22 Jan 2026	→ Q3 2026	Q3 — korea-ai-basic-act-mcp
Japan AI Promotion Act	2025 · honour-only	→ Q3 2026	Q3 — japan-ai-promotion-mcp
Singapore AI Verify	Live testing toolkit	→ Q3 2026	Q3 — singapore-ai-verify-mcp
Australia Mandatory Guardrails	Q3 2026 consultation	→ Q3 2026	Q3 — australia-guardrails-mcp
UAE National AI Charter	2024	→ Q3 2026	Q3 — uae-ai-charter-mcp
China Interim Measures GenAI	In force	👁 Watch	Watch-list
Brazil PL 21/20	Legislative process	👁 Watch	Watch-list
MiCA (Crypto)	In force	✓ Native	mica-crypto-mcp
Basel III AI Overlay + FRTB	Implementation	✓ Native	basel-ai-overlay-mcp
MiFID II AI	In force	✓ Native	mifid-ii-ai-mcp
AML / 6AMLD / FinCEN	Current	✓ Native	aml-ai-mcp
MDR + IVDR (EU MedTech)	In force	✓ Native	mdr-medical-device-mcp
FDA SaMD Action Plan	Current	✓ Native	fda-samd-mcp
COPPA + FERPA + AADC	In force	✓ Native	coppa-ferpa-mcp
UK FSA + EU Reg 178/2002	In force	✓ Native	fsa-food-safety-mcp
ENISA AI Threat Landscape	Annual + 2026 update	◐ Partial	agent-prompt-injection-firewall-mcp
ML-DSA-65 / FIPS 204 (PQ sig)	Aug 2024 finalised	→ Q3 2026	Q3 upgrade in agent-audit-logger-mcp
HPKE (RFC 9180)	Current	→ Q3 2026	Q3 attestation channels
zkML proofs (Risc Zero, EZKL)	Emerging	→ Q3 2026	Q3 — zkml-attestation-mcp
AWS Nitro + Intel TDX + AMD SEV-SNP	Current	→ Q3 2026	Q3 — tee-attest-mcp

Why this matters for procurement

The agent protocol layer is consolidating in real time. IBM ACP merged into A2A in September 2025. The EU AI Liability Directive was withdrawn in October 2025 and replaced by the revised Product Liability Directive. Korea's AI Basic Act came into force on 22 January 2026. Buying for one protocol or one regulator's clock is a bet on something that will keep moving.

MEOK's commitment: we ship the bridge. When a new protocol or framework lands, your existing Substrate subscription gets the new MCP for free. No re-procurement, no migration, no abandoned audit trails. The HMAC-signed evidence chain at verify.meok.ai stays continuous.

Pick your substrate

Free self-host, £99-£499/mo per substrate, or £1,499/mo for the lot.

A2A £499 Governance £499 Cybersec £199 Universe £1,499 PAYG £29

MEOK AI Labs · CSOAI LTD · UK Companies House 16939677 · MIT source · Apache 2.0 Python · Updated 2026-05-21

8 agent-interop protocols.30+ regulatory frameworks.47 MCPs.

Agent interop protocols (8 live)

Regulatory frameworks (49 mapped)

Why this matters for procurement

Pick your substrate

8 agent-interop protocols.
30+ regulatory frameworks.
47 MCPs.