GovTech Agent — Internal Developer Portal

Government technology agent for govtech-services. Manages citizen services, inter-agency data exchange, and FedRAMP-compliant deployments.

Quick Start

Connect your IDE or agent client:

# Add to your MCP config (Cursor, Claude Desktop, VS Code)
{
  "mcpServers": {
    "govtech-services": {
      "url": "https://govtech-agent.io/mcp",
      "transport": "streamable-http",
      "env": { "API_KEY": "$GOVTECH_SERVICES_API_KEY" }
    }
  }
}

# Or use A2A protocol
curl https://govtech-agent.io/.well-known/agent.json

Team & Infrastructure

Team size	100 engineers
Tech stack	java, angular, oracle, jenkins, docker
Internal tools	Enabled — Jenkins, Grafana, PagerDuty
Finance access	Enabled — Stripe Dashboard, NetSuite
Prod access	Staging only
Environments	dev, staging, production
CI/CD	GitHub Actions → ArgoCD → Kubernetes
Secrets manager	AWS Secrets Manager (govtech-services-prod/*)

Available Agent Skills

Skill	Description	Tags
`deploy`	Deploy to FedRAMP-authorized cloud environments	fedrampdeployment
`data-exchange`	Manage inter-agency data sharing agreements	data-sharinginterop
`citizen-services`	Process citizen service requests and applications	citizen-servicesforms
`compliance`	Validate FISMA and NIST compliance controls	fismanist
`reporting`	Generate quarterly performance and usage reports	reportingmetrics

API Endpoints

Method	Path	Description
GET	`/.well-known/agent.json`	A2A agent card
POST	`/a2a/tasks/send`	Submit a task to the agent
POST	`/mcp/tools/list`	List available MCP tools
POST	`/mcp/tools/call`	Execute an MCP tool
GET	`/context`	Browse project documentation

Security & Compliance

All agents interacting with govtech-services infrastructure must pass security assessment before production access is granted.

Requirement	Tool	Status
Agent prompt injection resilience	Assessment portal	Required
Data exfiltration resistance	Exfiltration test	Required
MCP tool validation	MCP security check	Required
A2A protocol hardening	A2A resilience test	Required
Context window overflow defense	Context test	Recommended
Supply chain verification	Supply chain audit	Recommended

Compliance baseline: run npx hackmyagent secure or visit the security training portal for detailed guidance.

Security References

MCP Security Checklist — deployment hardening guide
Agent Hardening Guide — production security baseline
A2A Security Examples — secure protocol implementation
Credential Safety Guide — API key and .env protection

Internal Resources

Agent Card — machine-readable capabilities
Project Documentation — architecture, runbooks, onboarding
Grafana Dashboard: https://grafana.internal.govtech-agent.io/d/govtech-services
Jenkins: https://ci.internal.govtech-agent.io/job/govtech-services
Slack: #govtech-services-engineering
Agent Security Profile — vulnerability scan results
Sector Threat Intelligence — government attack patterns