Skip to main content
Back to Blog
Research

Why Formal Standards Matter Now

Thomas Scola, Bluefly.io Founder & CEO
November 23, 2025

OpenAPI for AI Agents—Why Formal Standards Matter Now

The Case for Vendor-Neutral AI Agent Standards

Five years ago, if you asked engineers why they used OpenAPI, they'd probably shrug. Today, it's the foundation of enterprise API strategy. OpenAPI isn't a technology—it's a contract. It says: "Here's what my service does, what it needs, and what it returns." That contract means a team in Tokyo can integrate a service built in São Paulo without vendor lock-in, framework coupling, or repeated discovery conversations.

The AI agent ecosystem is at the exact inflection point where APIs were a decade ago: fragmented, vendor-locked, and unsustainable at scale.

We need OpenAPI for AI agents. Not as a nice-to-have. As a foundational governance layer.

The Problem: Vendor Lock-in at Scale

Today's AI agent frameworks each define agents differently:

  • Cursor agents work with Cursor's architecture
  • OpenAI's framework locks you into OpenAI's tooling
  • CrewAI agents don't port to LangChain without rewriting
  • Claude's tool_use protocol differs from other agent runtimes
  • BuildKit implements its own orchestration model

This isn't accidental—it's the natural state of an immature market. But it has serious consequences:

For enterprises: You're choosing a vendor, not an architecture. Switching frameworks means rewriting agent definitions, retraining teams, and auditing compliance from scratch.

For developers: Your prompt engineering, tool definitions, and orchestration logic become proprietary artifacts locked into one ecosystem.

For innovation: The ecosystem fragments instead of composing. Great tools can't talk to each other. Standards that could emerge get buried in closed implementations.

This is exactly where APIs were circa 2005—before Swagger (now OpenAPI) gave the industry a shared language.

Why Formal Standards Work

OpenAPI succeeded because it solved a real coordination problem. Without it:

  • Each API team defined their own documentation format
  • Integration required reverse-engineering or phone calls
  • Governance was inconsistent (what counts as "valid" input?)
  • Tooling couldn't be built once and reused everywhere
  • Compliance audits required custom inspection of every API

OpenAPI changed the game by:

  1. Separating specification from implementation. Your OpenAPI spec is a contract independent of whether you use FastAPI, Express, Django, or Go. The spec is governance; the code is execution.

  2. Enabling tool ecosystems. Once you had OpenAPI, you could build code generators, mock servers, testing frameworks, SDK builders, and governance tools that worked across all APIs using the spec.

  3. Creating vendor neutrality. OpenAPI belongs to the Linux Foundation. No vendor controls it. No vendor can lock you in through the standard itself.

  4. Building confidence through formalism. OpenAPI specs are machine-readable, validatable, and testable. You can prove compliance rather than hope for it.

AI agents need exactly this.

What a Formal Agent Standard Looks Like

A vendor-neutral AI agent standard should define:

Agent Interface (What the agent does)

  • Accepted input schemas
  • Output schemas and guarantees
  • Error handling contracts
  • Rate limits and timeout behavior
  • State management semantics

Tool Contracts (What the agent can call)

  • Tool definitions (name, parameters, return type)
  • Pre/post-condition semantics
  • Side effect guarantees
  • Error recovery protocols
  • Security boundaries

Orchestration Metadata

  • Agent dependencies and composition rules
  • Routing logic and load balancing hints
  • Fallback and retry strategies
  • Compliance and audit trail requirements
  • Observability surface (logging, tracing, metrics)

Governance and Conformance

  • Version management and deprecation paths
  • Certification that an agent conforms to the standard
  • Test suites that prove conformance
  • Audit trails for compliance frameworks (FedRAMP, NIST, SOC 2)

Think of it like OpenAPI, but for agents.

The Business Case: Why This Matters Now

1. Cost Control

Right now, every vendor is optimizing for their own economics. That means:

  • Unnecessary API calls (bad orchestration = more token spend)
  • Redundant inference (agents don't compose, so you run multiple models)
  • Lock-in pricing premiums (you can't negotiate or switch)

A formal standard enables cross-vendor optimization. You choose the best model for each task. You build agents once and run them on Claude, GPT-4, or local LLMs without rewriting.

We've measured this in production: proper agent orchestration reduces token consumption by 40-60% and cuts total cost of ownership by 30-50% for multi-agent systems.

2. Compliance and Governance

Regulated industries (government, healthcare, finance) need auditable systems. Right now:

  • Each agent framework has different logging, tracing, and observability
  • Compliance audits require framework-specific expertise
  • You can't prove that your agents conform to policy without custom inspection

A formal standard means you can:

  • Define compliance requirements once (in the spec)
  • Test conformance automatically
  • Generate audit trails that satisfy FedRAMP, NIST, and SOC 2 requirements
  • Switch implementations without re-auditing

3. Talent and Team Velocity

When your agents are locked into one framework, you're hiring for that framework. When agents are specified formally:

  • New team members ramp faster (spec-driven learning)
  • You can compose teams around problems, not technologies
  • Agents become documented, shareable assets
  • Code reviews become specification reviews

Why This Has to be Open and Vendor-Neutral

This is the critical lesson from OpenAPI's success.

If one vendor controls the agent standard, it becomes a competitive weapon, not a standard. AWS wouldn't use Azure's standard. Google wouldn't endorse OpenAI's orchestration format. Small teams would see it as favoritism.

OpenAPI works because:

  • It's owned by the Linux Foundation, not any single company
  • The governance model is transparent and inclusive
  • Major vendors (Google, Microsoft, Amazon, Stripe) all use it because they have a voice in its evolution
  • Startups can build on it without fear of legal entanglement

An agent standard needs the same structure. It should:

  • Live in a neutral foundation (not Anthropic, not OpenAI, not a VC-backed company)
  • Be governed by a diverse board (vendors, users, academics, compliance experts)
  • Have a clear RFC process for evolution
  • Guarantee that conformance testing is open-source and vendor-neutral
  • Prevent any single company from locking in via the standard

Getting There: Practical Steps

For enterprises right now:

  1. Demand portability. When evaluating agent frameworks, ask: "Can we export our agents to a vendor-neutral format?" If the answer is no, you're being locked in.

  2. Invest in agent contracts. Define your agents via formal specifications (OpenAPI-style) before implementing in a specific framework. This separates your domain logic from the framework coupling.

  3. Build for multi-vendor orchestration. If you're running multiple agents, assume they'll come from different platforms. Design your orchestration layer to work with vendor-neutral agent definitions.

  4. Contribute to open standards. The only way a standard becomes credible is if enterprises and vendors invest in it together.

For framework builders:

  1. Export to a standard format. If your framework doesn't support exporting agents to a vendor-neutral specification, you're betting against the future.

  2. Implement conformance testing. Show that your agents pass the same tests that any other compliant agent would pass.

  3. Join the governance conversation. Help shape the standard rather than fight it.

The Path Forward

This is happening. The industry has learned that vendor lock-in is unsustainable. OpenAPI proved that formal standards don't restrict innovation—they enable it.

An agent standard will look like OpenAPI: a specification that separates contracts from implementations, enables tool ecosystems, and guarantees vendor neutrality.

The question isn't whether this happens. It's whether it happens with your input, or whether you're caught flat-footed when it does.

The teams that move first—that build agent systems assuming portability, that invest in formal specifications, that contribute to open standards—will own the competitive advantage when the market matures.

Because in five years, when someone asks "Why does your team use an open agent standard?" the answer will be as obvious as it is for APIs today:

"Because everything else is insane."

Want to explore agent standards further? The conversation is happening now. Join the Open Standard Agents community, contribute to the specification, or reach out to discuss how your organization can build for portability today.

Tags

OSSAAI AgentsStandards
Back to All Posts