The short version:
- The first three layers of the Find/Understand/Trust framework taught machines to read your business. The fourth layer asks whether they can act on it.
- There is a new file to be added to root that will tell an agent what protocols you support and allow. Google had nothing to do with it and it has nothing to do with Google, but you’ll need it soon.
- There are serious business decisions to be made about what agents can do on your site. Your CDN, AI platform or eCommerce platform will make them if you don’t, but you may not like their choices.
What’s Old Is New Again
Think back to roughly 2010.
If you ran a B2B catalog business, an industrial distributor, a professional services firm, or any operation that sold to other businesses, you were making three decisions at once. Whether to put your catalog online at all. Whether to show pricing publicly. And whether to actually sell through the website, or just use it as a brochure and route the order through a salesperson.
None of those decisions felt small. Pricing visibility is a competitive question. Selling online means restructuring how you handle terms, returns, and credit. Putting your catalog where Google can index it means a stranger can find it without ever meeting your sales team.
Plenty of businesses delayed those decisions for years. Many made some but not others. A few never made them at all and watched marketplaces and search engines make the calls for them — sometimes painfully.
The web changed the audience your business had to publish for. It changed who could find you, on what schedule, with what information in hand. The decisions were not new in shape. Salesmen and Yellow Pages and trade-show booklets had asked the same questions in different forms for decades. The web was just the latest loop.
The agent-mediated web is the next loop.
This time the audience is not a buyer with a browser. It is an AI agent acting on behalf of a buyer:
- Sometimes representing a procurement officer running a sourcing list
- Sometimes representing a homeowner researching contractors
- Sometimes representing the buyer’s own ChatGPT or Gemini that has been asked to “find three quotes and bring me the cheapest one with a decent reputation”
The agent reads, weighs, recommends, and — with human approval — acts. Soon it will book the demo, pull the quote, and even place the order on its own IF your website has the requisite “surfaces” on which it can act.
From One Surface to Many
The first three layers of my Agent Readiness framework have a clear logic. FIND asks: can a machine access your content? UNDERSTAND asks: does the machine know what your business does? TRUST asks: does it have enough corroboration to mention you without hedging?
All three describe a machine that is reading you. Reading and citing. Reading and summarizing. Reading and recommending. The work on your end is making sure your site is legible and trustworthy enough that the machine does not get the story wrong.
“USE” adds a fourth layer to the framework because it describes a different relationship. Now, AI agents are no longer reading; they’re acting.
That is the simplest way to say what has changed. Up until very recently, the most an AI platform did with your website was describe it back to a human. Now that the AI platforms have given agents the tools and skills they need to negotiate an action like booking an appointment, the onus shifts to your website and its ability to understand the protocol being used and accept or negotiate the action.
Before we go further, a word about surfaces. The word means something specific in agent-readiness, and the rest of this article rests on it.
A surface is a defined access point on your website built for a specific type of visitor, with a contract about what that visitor can do there.
- Your customer-facing web pages are a surface — built for human readers, with HTML and CSS designed for eyes and screen readers
- An API endpoint is a different surface — built for software, with structured data designed to be parsed by code
- An MCP server is a third surface — built for AI agents, with description of what the business is and what an agent can do on its behalf
Your API has typically been revealed to trusted partners and customers through a developer’s page that is linked from the footer of your site. The location of today’s MCP server is shown in a file that lives at the root of your site: a /.well-known/ which we’ll discuss in more detail below.
A physical retailer already runs multiple surfaces today. Each one is built for a specific visitor with a specific contract. The agent-mediated web is doing the same thing to your website — the customer-facing pages stay, and new surfaces get added next to them.
An agent doing those things needs a different surface than a reader does. Reading is forgiving: an AI summarizing your services page can guess, hedge, or skip what it cannot parse. Acting is unforgiving. To book a demo on a buyer's behalf, an agent needs a documented way to do that — an endpoint, an authentication handshake, a confirmation contract, a defined boundary of what it is allowed to do.
One number to anchor why this matters now. AI crawlers are already 22% of all bot traffic on the web — second only to search. Today, almost all of that traffic is platforms reading you: building indexes, refreshing data, fetching pages to answer live questions. Only a small slice is agents actually acting on your behalf — pulling a specific price, placing an order, completing a transaction. That slice is small because the action surfaces do not exist on most sites yet. It will not stay small. The businesses publishing action surfaces this year are the ones agents will reach for next year.
Where You Sit in This Loop
Back in 2010, the changes that ushered in widespread adoption of eCommerce did not hit every business type at the same time. This “loop” of history is also not hitting everyone, everywhere all at once. Some businesses (like Shopify eCommerce stores) have already been pulled into the loop, while others may have as much as 18 months of runway to prepare.
Here is a working order, based on which industries have agent-action surfaces live in production today, which have surfaces being built, and which have not started.
| Loop Position | Industry | What's Already Moving | What That Means For You |
|---|---|---|---|
| 1 | Direct-to-Consumer Commerce | OpenAI's Apps SDK launched October 2025 with Booking.com, Canva, Coursera, Expedia, Figma, Spotify, and Zillow as first wave. Salesforce reported AI and agents influenced 20% of all global Cyber Week 2025 orders ($67B in sales). | You are competing for agent placement now, or you have lost shelf space already. |
| 2 | Travel & Hospitality | Restaurant and event booking through Google AI Mode is live with OpenTable, Resy, Tock, Ticketmaster, StubHub, and others. Flight and hotel booking is rolling out with Booking.com, Expedia, Marriott, IHG, Wyndham, and Choice Hotels. Forrester reports 36% of consumers are willing to delegate both planning and reservation to AI. | The booking flow is moving off your site onto the agent. Publish to the surface, or accept being unbookable through it. |
| 3 | Real Estate | Zillow's conversational AI launched March 2026. HousingWire reports only 8.4% of US agents appear in any AI-generated response for high-intent searches, and the top 1% capture 47% of citation share. | The citation concentration is hardening fast. The window to be one of the cited 8.4% is closing this year. |
| 4 | Financial Services | Industry projections place banking and insurance among the fastest-moving sectors on agentic AI production deployment. Compliance gates are being negotiated now. | The agent-action surface is being built around regulatory constraints. You decide whether you help shape them or live with what gets built without you. |
| 5 | Healthcare | Deloitte reports 80%+ of executives expect agentic and generative AI to deliver moderate-to-significant value in 2026, and 61% are already building. | Patient-facing and provider-directory agent surfaces are the early use cases. Discoverability and prior-authorization workflows are next. |
| 6 | Education | Coursera reports 95% of students and educators use AI on campus. Admissions and course-discovery surfaces are forming. | Application and enrollment workflows will sit on agent surfaces inside the next year. |
| 7 | B2B SaaS | Forrester predicts 30% of enterprise app vendors will launch their own MCP servers in 2026. The public MCP server registry has grown roughly 8x in a year. | Your product needs an agent-action surface or your buyers' agents will route around you to a competitor that has one. |
| 8 | Professional Services & Industrial Distribution | Quiet so far. Agent-action surfaces here are forming over the next 12-18 months. Cited share is wide open. | You have runway. You do not have unlimited runway. The companies that publish first are the ones cited when the agent infrastructure here hardens. |
A working order based on where agents are already operating today, not a market forecast. Cite the underlying sources, not the table.
This is not a forecast and should not be cited as one. As you can see, so far this speaks more to the skills and capabilities that have been given to AI agents in these areas than it does for the websites they are likely to interact with.
Everything I do as a consultant revolves around helping the website owners decide how to deal with and interact with these more capable agents. No one is going to be able to “opt out” of the agentic web. Even if your website falls into the top three categories above, you can still become one of the top cited and recommended websites because very few websites have even begun building the surfaces agents need to carry out any action.
/.well-known/: Life Beyond Google
There is a folder that follows the Unix/Linux naming convention for folders that have typically been used for backend purposes called /.well-known/. It has largely been owned and operated by dev teams to add or renew security certificates, for security disclosures or OAuth discovery.
It’s about to become one of the most important folders on your website.
That’s because /.well-known/ has quietly become the agent’s front-desk directory. It is defined by IETF standards RFC 5785 and RFC 8615, and tells machines where to find those surfaces we talked about earlier. As you add protocol capabilities to your website, you’ll add links to them here.
As SEOs, for the past 25+ years, we’ve built our sites to help Google’s spider crawl, read, index and reply to human questions about us. One of the first things Googlebot encounters on our site is an XML sitemap that sits at the root of our domain and tells Google what pages our site includes. Alongside it sits a robots.txt file, which tells Googlebot (and other search engine spiders) what folders and files within the site it can and cannot access.
Until now, AI bots from all of the major platforms have relied on these two files and have crawled our websites in much the same way the search engine spiders do. These bots were built to either extract information that would be used to train future AI agents, or they were built to answer specific user queries through web searches.
Because their capabilities vary, their ability to find, understand and trust the data they find on our sites differs. These distinctions are not going away because agents now have abilities that allow them to act.
They may, and frequently do, stumble over reading a site (which could also lead to them not being able to complete an action on your site).
/.well-known/ represents the first divergence from these parallel tracks search engine spiders and AI bots have been running along. This folder has nothing to do with Google and cannot and will not help you with search visibility in any way. BUT, it is the folder that will determine whether an AI agent will ever know that you offer an MCP server, or stand ready to do business with them.
The Protocols That Are Found Through /.well-known/
The “USE” layer of the agent readiness framework follows the same five-step business process we have always known. An agent:
- discovers what your business offers,
- reads how you describe it,
- negotiates the terms,
- transacts the order,
- and finally, pays.
Each step has a protocol (API, MCP, A2A, UCP, AP2) and each protocol is a published artifact your business will either advertise in /.well-known/ or skip. Skip enough of them and the agent skips your business.
Discover
The first thing an agent has to do is figure out what your business offers. The protocol for that is the API — Application Programming Interface. An API is how one piece of software asks another, programmatically, what is available: your product catalog, your prices, your inventory, your availability windows, your order status. The vendor publishes a contract — here is how to ask, here is what you’ll get back — and any agent following the contract can ask. No human in the middle. No phone call. No web form.
An AI agent that wants to do something with your business is going to look for an API. If you have one published and documented, the agent can act. If you do not, the agent moves on. Most B2B websites either have no public API or have one buried inside developer documentation, set up for partner integrations, never advertised anywhere an agent would think to look. The entry in /.well-known/api-catalog is what tells the agent where to look.
Describe
Once an agent has found you, it needs your business to describe itself in a way every agent can parse the same way. That protocol is MCP — Model Context Protocol. Released by Anthropic in November 2024 and adopted across the industry through 2025, MCP is a standardized format for telling an agent, in machine-readable form, what your business does, what it sells, how to act on its behalf, and what it will allow. An “MCP server” is a small, scoped service published at a known address that an agent can query when it needs to understand or act on your business. Anthropic’s own framing was that MCP is “the USB-C of AI integrations” — a single standard plug that replaces the bespoke wiring every integration used to require.
Technically, MCP is an API. It speaks JSON over standard transport protocols — same plumbing as any modern API. What makes MCP different is what gets bundled into the standard. A regular API gives an agent endpoints, inputs, outputs, and an authentication scheme; every API publisher writes their own documentation in their own format and an agent confronted with three different APIs has to learn three different voices before it can use any of them. MCP standardizes the surrounding scaffolding. When an agent connects to an MCP server, the server self-describes in a structured way every MCP-aware agent can already parse: here are my resources (read-only data — your catalog, your case studies, your inventory), here are my tools (actions the agent can take through me — place an order, submit an RFP, schedule a meeting), here are my prompts (workflow templates I support — the steps to book a demo), and here are the permissions on each. The agent does not read documentation. It asks.
One variant worth knowing about: WebMCP. WebMCP is a newer proposal that brings MCP capabilities into the browser context. Instead of running a separate MCP server somewhere on the network, a WebMCP-enabled website declares its MCP-style affordances directly in the page itself, so an agent running inside a user’s browser (a Chrome AI Mode session, a Copilot extension, an in-browser assistant) can use those capabilities through the browser’s own infrastructure. Lower friction for the site owner because there is no separate service to host. Higher friction for agents that are not browser-based. Both variants advertise their existence in /.well-known/, which is why the audit treats them the same way — the only thing that matters is that the agent can find an MCP-style surface when it goes looking.
Forrester predicts 30% of enterprise app vendors will launch their own MCP servers in 2026. If they are right, MCP is on track to become the default machine-readable business description for the agent era.
Negotiate
When two agents work out a deal — one representing the buyer, one representing the seller — they need a shared language for the back-and-forth. That protocol is A2A. Agent-to-agent. Google announced the A2A protocol in April 2025 specifically for this case, with more than 50 launch partners. The shape it describes is software-mediated negotiation: each agent has a principal (the buyer’s company, the seller’s company), a scope of authority (what it can commit to without checking back), and a set of conditions it is working toward (price, quantity, delivery terms, escalation triggers). The two agents exchange offers, counter-offers, and clarifying questions until they land on terms both principals’ agents are authorized to accept.
In a B2B context, the negotiation is usually multi-round and parameterized. A buyer’s procurement agent says: I need 500 units of part number X, delivered to three distribution centers by end of month, payment net-30. A seller’s agent responds: available volume is 380 in stock and 120 in transit, delivery to two of three centers by end of month, net-30 acceptable on prior-customer credit terms. Both agents check stored authority levels and return to the table. Eventually they either land on terms or escalate to humans. A2A is the format of that conversation.
Payment authorization is its own layer — see Pay below.
Transact
Once the negotiation lands, the agent moves to place the order. The protocol for that is UCP — Universal Commerce Protocol. Announced by Google at I/O 2026 and developed in collaboration with Shopify, Etsy, Wayfair, Target, Walmart, and more than 20 launch partners, UCP is an open standard for publishing what a business sells, what those products cost, how they can be ordered, and how the order gets fulfilled — in a format any AI agent can read and act on. Merchants publish their UCP capabilities at /.well-known/ucp. Once published, an agent representing a buyer can build a cart, check pricing, place an order, and receive fulfillment confirmation without the buyer ever loading the merchant’s website.
The consumer launch is Universal Cart — a cross-merchant cart inside Google Search and the Gemini app, backed by UCP-published merchant data and Google Wallet, rolling out summer 2026. The B2B version is not built into the protocol yet. Negotiated contract pricing, customer-specific catalogs, credit terms, tax exemptions, ERP-tied order workflows — none of it lives in UCP v1. Forrester projects 20% of B2B sellers will face agent-led quote negotiations by the end of 2026; Google’s stated roadmap is to add the B2B primitives over the next 12 to 18 months.
The B2B sellers who publish their public-facing catalog in UCP-readable form this year will be the ones whose customers’ procurement agents can find them when the B2B extensions land. The ones who wait will be the ones agents skip past, the way consumer agents already skip past merchants who never connected to Merchant Center.
Pay
The last step is paying for the order. The protocol for that is AP2 — Agent Payments Protocol. Announced at Google I/O 2026 and developed with Adyen, American Express, Ant International, Coinbase, Etsy, Mastercard, PayPal, Salesforce, ServiceNow, Worldpay, and more than fifty other partners, AP2 is an open protocol for one agent authorizing payment to another in a way every payment processor in the chain can verify. It works through what AP2 calls Mandates — cryptographically-signed digital contracts that record exactly what the user authorized the agent to do, signed in a way every party can verify after the fact. If a buyer’s procurement agent commits to a $42,000 purchase order, the Mandate records the buyer, the agent, the authorized ceiling, and the conditions; the seller, the seller’s agent, and the payment processor can all verify the Mandate before any money moves.
AP2 is payment-agnostic — credit cards, debit cards, stablecoins, real-time bank transfers, all behind the same protocol. The companion on the OpenAI side is ACP (the Agentic Commerce Protocol, co-developed by OpenAI and Stripe in 2025), which solves the same problem with a narrower partner set. Both are consumer-first today; the B2B work — agent-mediated purchase orders, customer-specific net-30 credit terms, multi-line freight allocations, escrow for contract negotiations — is the next 12 to 18 months of protocol evolution.
The pattern to recognize is that payment authorization is moving from “the buyer logs in and clicks pay” to “the buyer’s agent authorizes payment with a cryptographic mandate the seller can verify before fulfillment begins.” Different signing party. Same legal weight.
Business Decisions for You to Make
Each of those protocol entries carries a business decision you need to make. They’re the same sort of decisions you made back in 2010, and the implications they have for your future business growth are also very similar.
What do you let agents see?
In 2010, you decided whether to publish your pricing online. In 2026, you decide what your API surface returns. Public catalog or contract-account pricing? Real-time inventory or yesterday’s stock? Most B2B sellers don’t realize they’re making the decision until a competitor’s agent surface is already returning data theirs isn’t.
What do you let agents do?
In 2010, the question was whether to transact online or use the site as a brochure. In 2026, it splits into actions. Can an agent place an order? Pull a quote? Open a ticket? Negotiate terms? Your MCP server draws that line — what an agent can do for itself, and what it has to hand back to a human.
Which agents do you trust to do it?
A 2010 catalog didn’t ask who the visitor was. Anyone with a browser could see the page. Agent-mediated sites are starting to ask. Do you let any agent transact on a customer’s behalf, or only agents you’ve explicitly enrolled? Both answers are defensible. Not deciding is a decision your CDN will make for you.
How do you stand behind a price an agent quoted?
In 2010, the question was whether to publish prices at all. In 2026, it’s harder: prices on an agent surface are quotable, transactable, and held the moment they’re issued. Inventory caching that was fine for a web visitor isn’t fine for a buyer’s agent. You decide what the contract is. Your eCommerce platform has to honor it.
Business Decisions Made for You
Many companies made a near-fatal decision in 2010 that took them years or decades to overcome: they thought they could wait and see how the marketplace developed. Instead of being able to delay a decision, they had those decisions made for them by platform vendors who won’t wait for them.
Amazon decided pricing visibility for thousands of brands by listing the product anyway. Google decided what your business was called by parsing your site and your reviews. Yelp decided what a customer’s first impression of your restaurant looked like. None of those vendors asked permission. They published, and the businesses that had not decided in time inherited whatever the platform vendor chose.
The same thing is starting at the agent layer. Three places to watch.
Your CDN
Cloudflare, Akamai, AWS CloudFront, Fastly, and the smaller players have all shipped bot-management consoles. The default settings are vendor-chosen. If your marketing team doesn’t make the call, your DevOps team picks whichever default keeps the security team happy — increasingly, that default is “block agents we don’t recognize.” The decision gets made daily. The marketer’s name is rarely on it.
Your AI platform vendor
When a buyer’s ChatGPT, Gemini, or Claude decides what to recommend or how to act, the platform vendor is making the editorial call. OpenAI’s Apps SDK launched with seven first-wave partners. Every company not on that list is competing for later inclusion on terms the platform vendor sets. If your industry’s first wave is named, your runway is shorter than the priority table suggests.
Your eCommerce or commerce platform
Shopify, BigCommerce, and the major B2B commerce platforms are publishing agent-readiness defaults — what they expose, what they hold back, how prices flow. If you’re on one of those platforms, you’ve already inherited a posture you didn’t choose. The work is finding out what that posture is and deciding whether it’s the one you want.
The agent economy is not slowing down. Gartner projects 15% of day-to-day work decisions will be made autonomously by 2028, up from effectively zero in 2024. The hype around the loud first wave is over-bought. The shift underneath it is not. The businesses that come through this loop with a working agent surface are the ones who decide early.
Decide Before Your Defaults Decide for You
The platform vendors are publishing defaults daily. Some will work for your business. Many won’t. The ones that don’t, you’ll inherit anyway if you wait.
The 2010 question — whether to put your catalog online, publish prices, transact through the website — got harder for every business that delayed. The shape of the 2026 decision is the same. The deadline is shorter. The opportunity to move first is still open, because most of your competitors haven’t decided either.
Build the foundation: findable, understood, trusted. Then publish the action surfaces. Either you make the call, or the platform vendors make it for you.
Decide.
The Agent Readiness Audit Grades Every Gap Across All Four Layers.
You now know what Find, Understand, Trust, and Use require. The next question is which gaps are hurting you most — and which fixes will move citations and conversions fastest. That’s what the Audit is built to answer, with a scored diagnostic and a prioritized roadmap your team can act on.